summaryrefslogtreecommitdiffstats
path: root/lib/libpam
Commit message (Collapse)AuthorAgeFilesLines
* Fix:markm2001-08-111-7/+8
| | | | | | | | | | | | | /usr/src/lib/libpam/modules/pam_ssh/pam_ssh.c has couple of bugs which cause: 1) xdm dumps core 2) ssh1 private key is not passed to ssh-agent 3) ssh2 RSA key seems not handled properly (just a guess from source) 4) ssh_get_authentication_connectionen() fails to get connection because of SSH_AUTH_SOCK not defined. PR: 29609 Submitted by: Takanori Saneto <sanewo@ba2.so-net.ne.jp>
* Clean up this module very extensively. Fix the logging, the codingmarkm2001-08-1012-1410/+1101
| | | | | standards and the option handling. This module is now much more easy to maintain as a part of the FreeBSD tree.
* Code clean up; make logging same as other modules and fix warnings.markm2001-08-101-3/+9
|
* General code clean-up. Sort out warnings, and make the warning andmarkm2001-08-101-6/+14
| | | | logging work the same as other modules.
* Simplify code. Also verbose logging, verbose overridable error reporting.markm2001-08-101-5/+10
|
* Verbose logging, overridable verbose error reporting.markm2001-08-103-2/+18
|
* Module clean-up. Verbose logging, Overridable verbose error reporting,markm2001-08-101-26/+21
| | | | FreeBSD pam_prompt() usage to simplify conversation function usage.
* Verbosely (overridable) report failure to the user.markm2001-08-101-0/+4
|
* Use the FreeBSD pam_prompt() interface to the conversation functionmarkm2001-08-101-79/+62
| | | | | instead of home-rolling it. Clean up debugging code and tidy the module.
* Verbosely report errors to the user (overridable), and make suremarkm2001-08-101-3/+15
| | | | that the correct failure mode is reported.
* Fix broken logic so that this actually works for the superuser.markm2001-08-101-5/+21
| | | | | Verbosely log (properly). Verbosely report errors to the user.
* Rework this to prevent a nasty problem involving different modules'markm2001-08-101-42/+34
| | | | option interacting with each other.
* Declare the new user-error reporting macro.markm2001-08-102-6/+18
| | | | | This is a macro to allow use of the __FILE__ and __FUNCTION__ macros.
* Add a routine for providing feedback via the conversation mechanismmarkm2001-08-101-24/+58
| | | | (usually to stderr) for user-reportable errors.
* Fix style/consistency in Makefile and repair static module building.markm2001-08-042-5/+4
| | | | Submitted by: bde(partially)
* Don't clobber CFLAGSmarkm2001-08-041-1/+1
| | | | Submitted by: bde
* Fix the bug where this modulke was not checking the priamry GID, onlymarkm2001-08-041-24/+11
| | | | | | | the GIDS in /etc/group or NIS's group map. Tested by: sheldonh PR: 29349
* With the S/KEY removal, this is no longer buildable or necessary.markm2001-08-022-102/+0
|
* Don't try to make pam_ssh module if NO_OPENSSH is set.markm2001-08-021-1/+1
|
* Repair the get/set UID() stuff so this works in both su(1) and login(1)markm2001-08-021-3/+3
| | | | modes.
* Making this major bump was a BAD idea. The API change is internal (to PAM)markm2001-07-301-1/+1
| | | | and it caused problems without solving any.
* (Re)Add an SSH module for PAM, heavily based on Andrew Korty's modulemarkm2001-07-294-332/+404
| | | | from ports.
* mdoc(7) police: widen width of the options list.ru2001-07-181-1/+1
|
* Update to the same level of debug-logging as the rest of themarkm2001-07-171-6/+26
| | | | FreeBSD/PAM modules.
* Update to the same code as in the pam_krb5.so port.markm2001-07-174-64/+24
| | | | According to Peter, the port works - this needs more testing.
* Remove whitespace at EOL.dd2001-07-151-3/+3
|
* Use a better method of getting user credentials to account formarkm2001-07-142-8/+8
| | | | | | (legal) UID duplication. Rename use_uid to auth_as_self for consistency with other modules.
* Use a better method to get user credentials to account for (legal)markm2001-07-142-2/+3
| | | | duplications of UID's in /etc/*passwd.
* mdoc(7) police: -xwidth has been fold into -width.ru2001-07-1312-19/+19
|
* mdoc(7) police: fixed markup, a little bit.ru2001-07-1110-59/+67
|
* mdoc(7) police: fixed markup any numerous typos.ru2001-07-111-19/+24
|
* Fix a horrible bug introduced by myself where the options collectionmarkm2001-07-103-11/+20
| | | | keeps on growing as the module stack is parsed.
* mdoc(7) police: removed HISTORY info from the .Os call.ru2001-07-101-1/+1
|
* mdoc(7) police: removed HISTORY info from the .Os call.ru2001-07-101-1/+1
|
* Clean up (and in some cases write) the PAM mudules, usingmarkm2001-07-0935-266/+2030
| | | | | | | | | | o The new options-processing API o The new DEBUG-logging API Add man(1) pages for ALL modules. MDOC-Police welcome to check this. Audit, clean up while I'm here.
* Bump the major number. The libraries API has changed incompatibly.markm2001-07-091-1/+1
|
* Almost completely rewrite the PAM module options processingmarkm2001-07-097-82/+334
| | | | | | | | routines, and provide a more extended API for doing this. Provide an API for debug logging. Audit and clean up the code.
* mdoc(7) police: sort SEE ALSO xrefs (sort -b -f +2 -3 +1 -2).ru2001-07-061-2/+2
|
* mdoc(7) police: fixed formatting.ru2001-07-061-41/+64
|
* Fix libpam's linker set stuff to use the new API (unbreak world), and getpeter2001-06-141-10/+1
| | | | rid of gensetdefs from here as well.
* Convert to mdoc(7).chris2001-06-131-86/+84
|
* Big module cleanup.markm2001-06-0418-267/+48
| | | | | | | | | | | Move common stuff into Makefile.inc, and tidy up all the Makefiles as a result. Build new modules. Put a commented-out dependancy on libpam for the (shared) modules. I can't bring this in just yet, as the dependancy (modules->libpam) is reversed for the static case (libpam->modules).
* Null file to bring back a file from the dead. This allows the real commitmarkm2001-06-041-0/+2
| | | | to happen remotely. Damn CVS bugs :-(
* Add the "nullok" option that causes this module to succeed if the Unixmarkm2001-06-041-3/+11
| | | | password is empty/null.
* Tidy up the options list (and make it more extendable), and add somemarkm2001-06-043-14/+23
| | | | extra "standard" options.
* Add some new utility authenticators.markm2001-06-044-0/+354
| | | | | | | | pam_securetty silently succeeds if the user is on a secure tty as defined by /etc/ttys. pam_ftp does "anonymous ftp" style authentication with options for specifying the anonymous user(s).
* Add the "auth_as_self" option to the pam_unix module (there is nomarkm2001-05-244-3/+11
| | | | | | | reason not to add it to others later). This causes the pam_unix module to check the user's _own_ password, not the password of the account that the user is authenticating into. This will allow eg: WHEELSU type behaviour from su(1).
* Bring in a few useful PAM modules.markm2001-05-1417-4/+1810
| | | | | | | | | | | | | | | | | | pam_krb5 is a Kerberos 5 (Heimdal) authentication module. pam_nologin checks for /etc/nologin and does the "usual stuff" if it is found, otherwise it silently succeeds. pam_rootok silently succeeds if the user is root, otherwise it fails. pam_wheel silently succeeds if the user is a member of group "wheel" (or another nominated group), and fails otherwise. There is an issue with kerberosIV and kerberos5 - if both are being built, then static linking fails with duplicate symbols. This will take a bit of work to sort out in the kerberii.
* Finish disconnecting pam_ssh from the build.green2001-05-041-3/+0
|
* I've been meaning to take pam_ssh out of the base system for a while now.green2001-05-041-3/+0
| | | | Finally do it.
OpenPOWER on IntegriCloud