| Commit message (Collapse) | Author | Age | Files | Lines |
|
|
|
| |
Add FreeBSD Id tag where missing.
|
| |
|
|
|
|
|
|
| |
Approved by: re
Sponsored by: DARPA, Network Associates Labs
Obtained from: TrustedBSD Project
|
|
|
|
| |
to be non-fatal due to stack alignment roundups.
|
|
|
|
|
|
|
|
| |
information, since we rely on the pwd entry to know what MAC labels
to set as part of the login process.
Obtained from: TrustedBSD Project
Sponsored by: DARPA, Network Associates Laboratories
|
| |
|
|
|
|
| |
Submitted by: joerg
|
|
|
|
|
|
|
|
|
|
|
|
| |
if the user has a 'label' entry in their login class. If so, attempt
to set that label on the process as part of the credential setup. If
we're unable to parse the label, or unable to set the label, fail.
In the future, we may also want to warn if a label is set but the
kernel doesn't support MAC.
Approved by: re
Obtained from: TrustedBSD Project
Sponsored by: DARPA, Network Associates Laboratories
|
| |
|
| |
|
|
|
|
|
|
|
|
| |
that it should also set the user's default MAC label, if available and
permitted.
Obtained from: TrustedBSD Project
Sponsored by: DARPA, NAI Labs
|
|
|
|
|
|
|
| |
for MAC-related commits to the login infrastructure.
Obtained from: TrustedBSD Project
Sponsored by: DARPA, NAI Labs
|
| |
|
|
|
|
|
| |
"term" according to manpage, i.e. not overwrite it, if already present in
environment.
|
|
|
|
| |
Submitted by: bde
|
|
|
|
| |
by RLIMIT_VMEM addition.
|
| |
|
|
|
|
| |
sshd, /usr/bin/login, etc)
|
|
|
|
|
|
|
| |
Distinguish between a held lock and a failed lock op.
If rpc.lockd is not running on a diskless client this makes clearer
what the problem is.
|
|
|
|
| |
Submitted by: Sergey Zorin <sergey@cc.tpu.edu.ru>
|
| |
|
|
|
|
| |
Sponsored by: DARPA, NAI Labs
|
|
|
|
| |
Sponsored by: DARPA, NAI Labs
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
named by its argument and use ttyslot(3) instead to determine what slot to
use. The problem is that sshd(8) calls pam_open_session(3) before forking
the child (as it should), at which point it does not have a controlling
terminal. Also, ttyslot(3) is very crude as it assumes fd 0, 1 or 2 refers
to the controlling terminal, which is usually (but not always) the case.
Instead of using ttyslot(3) to determine the slot number, look up the
specified tty in /etc/ttys ourselves (this is what ttyslot(3) does anyway).
(perforce change 9969)
Sponsored by: DARPA, NAI Labs
|
|
|
|
|
|
|
|
|
| |
them to point at static strings that contain the default paths. This
makes 'vipw -d' work again (I broke it in rev 1.21; apologies for taking
so long to fix it.)
Spotted by: Olivier Houchard <doginou@cognet.ci0.org>
Sponsored by: DARPA, NAI Labs
|
|
|
|
|
| |
Approved by: murray
MFC after: 1 week
|
| |
|
| |
|
| |
|
| |
|
| |
|
| |
|
|
|
|
|
| |
PR: 35273
Submitted by: Nicola Vitale <nivit@libero.it>
|
|
|
|
|
|
| |
depending on namespace pollution 2 layers deep in <sys/stat.h>.
Sorted includes.
|
|
|
|
|
|
| |
namespace pollution 2 layers deep in <sys/stat.h>.
Sorted includes.
|
|
|
|
| |
Sponsored by: DARPA, NAI Labs
|
|
|
|
|
|
|
|
| |
extattr namespace routines to the libc/posix1e directory. While
the extattr calls are not strictly POSIX.1e, POSIX.1e wasn't
strictly ever approved, so I think that's OK.
Obtained from: TrustedBSD Project
|
| |
|
|
|
|
|
|
|
| |
is not defined in the capability type list. Provide a definition for
'bool', if a slightly less than elegant one. Note that this definition
does not include the complete scope of available behavior defined
in cgetcap(3), and could probably be improved.
|
|
|
|
|
|
|
| |
from login(3). This page, logwtmp(3), speaks of only
one file -- wtmp(5).
MFC after: 1 week
|
| |
|
| |
|
|
|
|
| |
2) Pick only "me" class from ~/.login_conf as documented
|
|
|
|
|
|
| |
and globaly settings. An alternative implementation will be developed.
Reported by: Przemyslaw Frasunek <venglin@freebsd.lublin.pl>
|
|
|
|
|
|
|
| |
of NFS home directory and root directory processing fails to include
additional groups. This doesn't impact the final credential, but does
mean that users may be denied login even when additional groups might
allow it.
|
| |
|
|
|
|
| |
with a trailing zero-width space: `e.g.\&'.
|
|
|
|
|
| |
Reviewed by: brian
MFC after: 5 days
|
| |
|