summaryrefslogtreecommitdiffstats
path: root/lib/libutil
Commit message (Collapse)AuthorAgeFilesLines
* Document the `label' capability.chris2002-11-221-0/+2
| | | | | | Approved by: re Sponsored by: DARPA, Network Associates Labs Obtained from: TrustedBSD Project
* Oops. Some ut_time stuff slipped through the cracks. These turned outpeter2002-11-172-2/+4
| | | | to be non-fatal due to stack alignment roundups.
* Add LOGIN_SETMAC to the list of flags that can't be set without classrwatson2002-11-121-1/+1
| | | | | | | | information, since we rely on the pwd entry to know what MAC labels to set as part of the login process. Obtained from: TrustedBSD Project Sponsored by: DARPA, Network Associates Laboratories
* Use "deprecated" instead of "depreciated" where appropriate.sheldonh2002-10-301-1/+1
|
* Don't forget to '\n'-terminate new entries. This unbreaks chpass -a.des2002-10-291-1/+2
| | | | Submitted by: joerg
* If LOGIN_SETMAC is set and MAC is enabled in the kernel, then seerwatson2002-10-231-0/+27
| | | | | | | | | | | | if the user has a 'label' entry in their login class. If so, attempt to set that label on the process as part of the credential setup. If we're unable to parse the label, or unable to set the label, fail. In the future, we may also want to warn if a label is set but the kernel doesn't support MAC. Approved by: re Obtained from: TrustedBSD Project Sponsored by: DARPA, Network Associates Laboratories
* Zap now-unused SHLIB_MINORpeter2002-09-281-1/+0
|
* Replace various spelling with FALLTHROUGH which is lint()ablecharnier2002-08-252-2/+2
|
* Add LOGIN_SETMAC, which will indicate to the user context management coderwatson2002-08-161-1/+2
| | | | | | | | that it should also set the user's default MAC label, if available and permitted. Obtained from: TrustedBSD Project Sponsored by: DARPA, NAI Labs
* Whitespace cleanup--it's not style(9), but it is consistent. Preprwatson2002-08-111-3/+3
| | | | | | | for MAC-related commits to the login infrastructure. Obtained from: TrustedBSD Project Sponsored by: DARPA, NAI Labs
* mdoc(7) police: spelling.ru2002-08-091-1/+1
|
* Add additional field 'overwrite' to login_vars. It mainly needed to handleache2002-06-281-10/+11
| | | | | "term" according to manpage, i.e. not overwrite it, if already present in environment.
* Backout previous delta (addition of -I${.CURDIR}/../../sys).sobomax2002-06-261-2/+1
| | | | Submitted by: bde
* Add -I${.CURDIR}/../../sys into CFLAGS, which should fix the world brokensobomax2002-06-261-1/+2
| | | | by RLIMIT_VMEM addition.
* Add documentation for vmemoryusedillon2002-06-261-0/+1
|
* Make libutil aware of vmemoryuse in its login.conf cap processing (akadillon2002-06-261-0/+1
| | | | sshd, /usr/bin/login, etc)
* Be more clear in error messages.n_hibma2002-06-231-4/+9
| | | | | | | Distinguish between a held lock and a failed lock op. If rpc.lockd is not running on a diskless client this makes clearer what the problem is.
* Return HOSTNAME_INVALIDADDR when reverse lookup is fail.ume2002-06-071-1/+1
| | | | Submitted by: Sergey Zorin <sergey@cc.tpu.edu.ru>
* Add used include of <string.h>.wollman2002-05-301-0/+1
|
* If no old_pw was passed to pw_copy, compare just the name.des2002-05-081-1/+2
| | | | Sponsored by: DARPA, NAI Labs
* Add passwd manipulation code based on parts of vipw and chpass.des2002-05-083-86/+438
| | | | Sponsored by: DARPA, NAI Labs
* login(3) doesn't care about the controlling terminal any more.des2002-04-201-1/+1
|
* Fix for the sshd(8) utmp problem. Previously, login(3) would ignore the ttydes2002-04-201-3/+9
| | | | | | | | | | | | | | | named by its argument and use ttyslot(3) instead to determine what slot to use. The problem is that sshd(8) calls pam_open_session(3) before forking the child (as it should), at which point it does not have a controlling terminal. Also, ttyslot(3) is very crude as it assumes fd 0, 1 or 2 refers to the controlling terminal, which is usually (but not always) the case. Instead of using ttyslot(3) to determine the slot number, look up the specified tty in /etc/ttys ourselves (this is what ttyslot(3) does anyway). (perforce change 9969) Sponsored by: DARPA, NAI Labs
* Make mppath and masterpasswd pointers instead of arrays, and initializedes2002-04-171-2/+4
| | | | | | | | | them to point at static strings that contain the default paths. This makes 'vipw -d' work again (I broke it in rev 1.21; apologies for taking so long to fix it.) Spotted by: Olivier Houchard <doginou@cognet.ci0.org> Sponsored by: DARPA, NAI Labs
* Add a missing cross-ref.ceri2002-04-161-1/+2
| | | | | Approved by: murray MFC after: 1 week
* Remove bogus reference to _use_yp.des2002-04-151-9/+1
|
* Const poisoning.ru2002-04-086-28/+26
|
* Remove multi-line __P() usage.obrien2002-03-221-8/+7
|
* Remove __P() usage.obrien2002-03-213-66/+66
|
* Remove 'register' keyword.obrien2002-03-212-3/+3
|
* Remove a bogus cast.des2002-03-061-1/+1
|
* Correct a typo.dd2002-03-031-1/+1
| | | | | PR: 35273 Submitted by: Nicola Vitale <nivit@libero.it>
* #include <time.h> for the definition of time functions instead ofbde2002-02-251-1/+2
| | | | | | depending on namespace pollution 2 layers deep in <sys/stat.h>. Sorted includes.
* #include <stddef.h> for the definition of NULL instead of depending onbde2002-02-251-1/+3
| | | | | | namespace pollution 2 layers deep in <sys/stat.h>. Sorted includes.
* ANSIfy and constify.des2002-02-051-17/+15
| | | | Sponsored by: DARPA, NAI Labs
* o Reflect repo-copy of extattr.[c3] from libutil to libc, movingrwatson2001-11-163-181/+1
| | | | | | | | extattr namespace routines to the libc/posix1e directory. While the extattr calls are not strictly POSIX.1e, POSIX.1e wasn't strictly ever approved, so I think that's OK. Obtained from: TrustedBSD Project
* o Document 'nocheckmail' login capability.rwatson2001-11-161-0/+1
|
* Although the 'bool' type is referenced in the list of capabilities, itrwatson2001-11-161-0/+3
| | | | | | | is not defined in the capability type list. Provide a definition for 'bool', if a slightly less than elegant one. Note that this definition does not include the complete scope of available behavior defined in cgetcap(3), and could probably be improved.
* Fix the phrase about "both files", which must be leftyar2001-10-111-1/+3
| | | | | | | from login(3). This page, logwtmp(3), speaks of only one file -- wtmp(5). MFC after: 1 week
* mdoc(7) police: Use the new .In macro for #include statements.ru2001-10-0119-44/+44
|
* Add __FBSDID()s to libutildillon2001-09-3020-52/+58
|
* 1) Back out ~/.login_conf disableache2001-09-252-8/+5
| | | | 2) Pick only "me" class from ~/.login_conf as documented
* Disable per-user .login_conf support due to incorrect merging of localrwatson2001-09-162-0/+5
| | | | | | and globaly settings. An alternative implementation will be developed. Reported by: Przemyslaw Frasunek <venglin@freebsd.lublin.pl>
* o Add a comment noting that the early setting of privileges for the purposerwatson2001-09-151-2/+6
| | | | | | | of NFS home directory and root directory processing fails to include additional groups. This doesn't impact the final credential, but does mean that users may be denied login even when additional groups might allow it.
* Removed duplicate VCS ID tags, as per style(9).ru2001-08-131-1/+0
|
* mdoc(7) police: protect trailing full stops of abbreviationsru2001-08-101-1/+1
| | | | with a trailing zero-width space: `e.g.\&'.
* Simplify IPv4 mapped IPv6 address handling.ume2001-07-231-66/+39
| | | | | Reviewed by: brian MFC after: 5 days
* remove emalloc,ecalloc,erealloc,estrdupassar2001-07-237-270/+1
|
* add ecalloc, emalloc, erealloc, estrdup - versions of the e-lessassar2001-07-227-2/+271
| | | | functions that exit instead of failing
* Hint getaddrinfo() correctly if we're looking up a name that we got frombrian2001-07-211-2/+9
| | | | | | an AF_INET6 address. MFC after: 1 week
OpenPOWER on IntegriCloud