summaryrefslogtreecommitdiffstats
path: root/lib/libpam/modules/pam_unix
Commit message (Collapse)AuthorAgeFilesLines
* Set retval in the empty password case to avoid a path through thetruckman2016-05-161-0/+1
| | | | | | | | | | code that fails to set retval before falling through to the final return(). Reported by: emaste Reported by: Coverity CID: 1018711 MFC after: 1 week
* Hoist the getpwnam() call outside the first if/else block intruckman2016-05-161-2/+2
| | | | | | | | | | pam_sm_chauthtok(). Set user = getlogin() inside the true branch so that it is initialized for the following PAM_LOG() call. This is how it is done in pam_sm_authenticate(). Reported by: Coverity CID: 272498 MFC after: 1 week
* Add META_MODE support.sjg2015-06-131-0/+23
|\ | | | | | | | | | | | | | | | | | | | | Off by default, build behaves normally. WITH_META_MODE we get auto objdir creation, the ability to start build from anywhere in the tree. Still need to add real targets under targets/ to build packages. Differential Revision: D2796 Reviewed by: brooks imp
| * Merge sync of headsjg2015-05-271-4/+2
| |\ | |/ |/|
| * Need headers staged by libpamsjg2014-11-301-0/+1
| |
| * Updated/new dependenciessjg2014-11-191-1/+0
| |
| * Updated dependenciessjg2014-05-161-1/+1
| |
| * Updated dependenciessjg2014-05-101-0/+2
| |
| * Merge from headsjg2014-05-081-0/+1
| |\
| * \ sync from headsjg2013-04-121-3/+3
| |\ \
| * | | Updated dependenciessjg2013-03-111-0/+1
| | | |
| * | | Updated dependenciessjg2013-02-161-2/+0
| | | |
| * | | Updated/new Makefile.dependsjg2012-11-081-0/+6
| | | |
| | | |
| | \ \
| *-. \ \ Sync from headsjg2012-11-041-2/+2
| |\ \ \ \
| * | | | | Sync FreeBSD's bmake branch with Juniper's internal bmake branch.marcel2012-08-221-0/+18
| | |/ / / | |/| | | | | | | | | | | | | Requested by: Simon Gerraty <sjg@juniper.net>
* | | | | Convert libraries to use LIBADDbapt2014-11-251-4/+2
| |_|_|/ |/| | | | | | | | | | | While here reduce a bit overlinking
* | | | Use src.opts.mk in preference to bsd.own.mk except where we need stuffimp2014-05-061-0/+1
| |_|/ |/| | | | | | | | from the latter.
* | | Fix declaration vs. definition inconsistency. No functional change.jkim2013-04-051-3/+3
| |/ |/|
* | Fix an instance in pam_krb5(8), where the variable 'user' could be useddim2012-08-061-2/+2
|/ | | | | | | | uninitialized. Found by: clang 3.2 Reviewed by: des MFC after: 1 week
* Rev 228065 (change bsd.own.mk -> bsd.init.mk) broke pam_unix.so by causingpeter2012-01-181-2/+2
| | | | | | | | | | | | the LDADD/DPADD to lose the -lpam, and causing openpam_dynamic() to fail due to "openpam_get_options" being undefined. This would cause obscure console log messages like: openpam_dynamic(): No error: 0 openpam_load_module(): no pam_unix.so found and other helpful messages which are no help in diagnosing the problem. Fortunately this change was not mfc'ed to 9.x, it isn't broken there.
* .include <bsd.init.mk> instead of <bsd.own.mk>fjoe2011-11-281-3/+1
| | | | The former allows common settings from ../Makefile.inc to be used.
* Remove an unused variable from pam_unix.ed2011-11-051-2/+0
| | | | | | | | This variable was added in r82352 back in 2001, but even then it didn't have any use. Because it's not marked static, the C compiler won't complain about it. Discussed with: des
* Note that pam_unix(8) does not respect PAM_CHANGE_EXPIRED_AUTHTOK.des2011-11-021-0/+6
|
* Add <time.h> for ctime(), which we accidentally picked up throughdes2010-11-221-0/+1
| | | | | | | <sys/time.h>. Submitted by: Garrett Cooper <yanegomi@gmail.com> MFC after: 3 days
* Respect passwordtime from login.conf if set.des2010-02-021-2/+9
| | | | | | PR: bin/93473 Submitted by: Björn König <bkoenig@cs.tu-berlin.de> MFC after: 1 week
* Note that nullok should not be used by processes that can't access thedes2009-11-131-0/+11
| | | | | | | password database. PR: bin/126650, misc/140514 MFC after: 1 week
* Rewrap; this was getting painful. Translators can ignore this.des2009-06-201-59/+36
| | | | MFC after: 1 week
* Reword.des2009-06-201-4/+2
| | | | MFC after: 1 week
* Adjust for OpenPAM Hydrangea.des2007-12-211-1/+1
|
* - Convert NO_INSTALLLIB option to a new syntax: makefiles shouldru2007-10-201-0/+1
| | | | | | | | | | | test MK_INSTALLLIB, users can set WITHOUT_INSTALLLIB. The old NO_INSTALLLIB is still supported as several makefiles set it. - While here, fix an install when instructed not to install libs (usr.bin/lex/lib/Makefile). PR: bin/114200 Submitted by: Henrik Brix Andersen
* In account management, verify whether the account has been lockedyar2007-03-272-3/+22
| | | | | | | | | | | | | | with `pw lock', so that it's impossible to log into a locked account using an alternative authentication mechanism, such as an ssh key. This change affects only accounts locked with pw(8), i.e., having a `*LOCKED*' prefix in their password hash field, so people still can use a different pattern to disable password authentication only. Mention all account management criteria in the manpage. Approved by: maintainer (timeout) PR: bin/71147 MFC after: 1 month
* The pam_unix module also provides password management.ru2006-10-121-7/+8
| | | | | | PR: docs/93491 Submitted by: Lior Kadosh MFC after: 3 days
* Fix build until I find a way to handle this case properly.ru2006-03-191-0/+1
|
* Reimplementation of world/kernel build options. For details, see:ru2006-03-171-1/+3
| | | | | | | | http://lists.freebsd.org/pipermail/freebsd-current/2006-March/061725.html The src.conf(5) manpage is to follow in a few days. Brought to you by: imp, jhb, kris, phk, ru (all bugs are mine)
* Use the correct login class when setting a new password.des2005-07-051-1/+1
| | | | | | | PR: 65557, 72949 Submitted by: Stephen P. Cravey <clists@gotbrains.org> Approved by: re (scottl) MFC after: 2 weeks
* NI_WITHSCOPEID cleanupume2005-05-131-1/+1
| | | | Reviewed by: des
* Fixed xref.ru2005-01-211-2/+2
|
* Add knob NO_NIS (fka NO_YP_LIBC) and make world compileable when set.bz2004-11-131-3/+7
| | | | | | | | | | | If turned on no NIS support and related programs will be built. Lost parts rediscovered by: Danny Braniss <danny at cs.huji.ac.il> PR: bin/68303 No objections: des, gshapiro, nectar Reviewed by: ru Approved by: rwatson (mentor) MFC after: 2 weeks
* Fix numerous constness and aliasing issues.des2004-02-101-1/+1
|
* Remove crossref to pam.conf(5) which never existed.schweikh2004-01-171-1/+0
|
* Fix strict aliasing breakage in PAM modules (except pam_krb5, which needsdes2003-12-111-13/+10
| | | | more work than the others). This should make most modules build with -O2.
* Fix the master yppasswd routines, so they really workmbr2003-06-151-0/+26
| | | | | | | | for root on ypmaster. yppasswd_local() did use YPPASSWDPROG instead of MASTER_YPPASSWDPROG, and the domain was not set, resulting in a coredump during xdr-encode. Reviewed by: des
* Update copyright dates.des2003-05-311-1/+1
|
* Remove all instances of pam_std_option()des2003-05-311-38/+11
|
* Make sure rhostip is always initialized.des2003-04-301-1/+1
| | | | | PR: bin/51508 Submitted by: Peter Grimshaw <peter@tesseract.demon.co.uk>
* Treat an empty PAM_RHOST the same as a NULL one.des2003-04-301-1/+1
| | | | PR: bin/51508
* Remove a bogus null password check which assumed that a user with an emptydes2003-04-241-2/+8
| | | | | | password must necessarily have an empty pwd->pw_passwd. Also add a check that prevents users from setting a blank password unless the nullok option was specified. Root is still allowed to give anyone a blank password.
* style.Makefile(5) policeobrien2003-03-091-6/+8
| | | | | | (I've tried to keep to the spirit of the original formatting) Reviewed by: des
* english(4) police.schweikh2002-12-271-1/+1
|
* Free old_pwd only in the code path where it has been allocated.jmallett2002-05-221-1/+1
| | | | Reviewed by: des
OpenPOWER on IntegriCloud