OpenPAM/OpenPAM
OpenPAM/OpenPAM
1
0
Fork 0
Code Issues Pull requests Projects Releases Wiki Activity
189 commits 3 branches 10 tags 1.9 MiB
Commit graph

100 commits

Author SHA1 Message Date
Dag-Erling Smørgrav fa370a5bde Fix typo in debugging macro. 
Submitted by:	Mikko Tyolajarvi <mbsd@pacbell.net>


git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@189 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2003-01-03 03:17:16 +00:00
Dag-Erling Smørgrav 20a7a7ae90 Instrument entry and exit points. 
git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@187 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2002-12-12 17:06:29 +00:00
Dag-Erling Smørgrav bf8598063a Record which primitive is currently executing before calling the 
service module.  Use that information to generate a much better
error message when indirect recursion is detected.

Instrument openpam_dispatch()'s entry and exit points.


git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@186 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2002-12-12 17:04:04 +00:00
Dag-Erling Smørgrav b0ba976453 Declare _pam_func_name and _pam_err_name. 
Add a member to the pam_handle structure indicating which primitive
is currently executing.
Add a ton of debugging macros.


git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@185 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2002-12-12 17:01:39 +00:00
Dag-Erling Smørgrav 2fb80ca71d Add an array containing the API names for the PAM primitives. 
git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@184 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2002-12-12 16:59:21 +00:00
Dag-Erling Smørgrav 7b3ff93221 Add an array of symbolic names for the PAM error codes. 
Fix a minor style nit.


git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@183 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2002-12-12 16:58:28 +00:00
Dag-Erling Smørgrav e9c79d25f0 Make the log level default to PAM_LOG_ERROR. 
git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@175 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2002-12-04 15:15:03 +00:00
Dag-Erling Smørgrav 1d796b814b Support /usr/local/etc/pam.conf, for completeness' sake. 
Sponsored by:	DARPA, NAI Labs


git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@174 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2002-10-28 13:39:45 +00:00
Dag-Erling Smørgrav fa4be69c1b Write message to stdout, not stderr. 
Submitted by:	jmallett
Sponsored by:	Rachel Hestilow <rachel@jerkcity.com>


git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@170 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2002-10-22 19:00:14 +00:00
Dag-Erling Smørgrav 913c1aaf47 Add the PAM_REPOSITORY item (from Solaris 9). 
Sponsored by:	DARPA, NAI Labs


git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@164 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2002-06-30 23:11:38 +00:00
Dag-Erling Smørgrav bfd6af11ec s/pam_info/pam_error/ in documentation. 
git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@163 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2002-06-30 23:10:59 +00:00
Dag-Erling Smørgrav a9b8bb1e92 Implement the "binding" control flag (from Solaris 9) 
Sponsored by:	DARPA, NAI Labs


git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@161 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2002-06-30 22:41:59 +00:00
Dag-Erling Smørgrav d185910864 Include <sys/types.h> to define size_t. 
git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@160 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2002-06-30 22:41:17 +00:00
Dag-Erling Smørgrav 1b829e63eb Don't treat PAM_NEW_AUTHTOK_REQD as an error. 
Try to emulate Solaris more closely.

Sponsored by:	DARPA, NAI Labs


git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@158 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2002-06-12 18:07:05 +00:00
Dag-Erling Smørgrav ed3d5a8522 DBA update and minor whitespace fixes. 
git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@157 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2002-06-07 18:22:57 +00:00
Dag-Erling Smørgrav f414e56812 Split the summar page in two (one for the standard API, one for 
extensions).  Also add a page about the conversation system, and
remove that information from the pam_start page.

Sponsored by:	DARPA, NAI Labs


git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@153 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2002-05-28 00:58:47 +00:00
Dag-Erling Smørgrav 70792385d0 Conditionalize debugging messages in !STDC, !GNUC case. 
git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@151 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2002-05-24 15:04:27 +00:00
Dag-Erling Smørgrav 859840dd61 GCC 3 is upon us. 
Sponsored by:	DARPA, NAI Labs


git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@147 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2002-05-24 14:27:09 +00:00
Dag-Erling Smørgrav 6013f825ec Add documentation. 
Sponsored by:	DARPA, NAI Labs


git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@145 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2002-05-09 19:52:55 +00:00
Dag-Erling Smørgrav 082364c255 Initialize other to all-zeroes before using it. 
git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@142 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2002-05-03 14:55:03 +00:00
Dag-Erling Smørgrav 472018b4e5 Fall in line with Solaris and Linux-PAM wrt use of the "other" policy: 
use it to fill the gaps in incomplete policies as well as to replace
missing ones.

Sponsored by:	DARPA, NAI Labs


git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@137 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2002-05-02 06:08:02 +00:00
Dag-Erling Smørgrav 2cc6bad9fc Don't reference vpath after it's been freed. 
git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@136 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2002-04-24 22:50:40 +00:00
Dag-Erling Smørgrav c1bd6712a0 Add colons so gendoc recognizes this as a list rather than a literal 
section.

Sponsored by:	DARPA, NAI Labs


git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@132 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2002-04-17 23:51:34 +00:00
Dag-Erling Smørgrav c51f824179 Set rsp to NULL before calling the conversation function, so we can 
later detect if it hasn't been touched.

Sponsored by:	DARPA, NAI Labs


git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@130 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2002-04-17 07:26:16 +00:00
Dag-Erling Smørgrav ad8d33ef88 Add a null conversation function. 
Sponsored by:	DARPA, NAI Labs


git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@129 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2002-04-17 06:46:51 +00:00
Dag-Erling Smørgrav 2d7706551f Additional debugging messages. 
git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@127 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2002-04-15 08:30:42 +00:00
Dag-Erling Smørgrav eeab6a40c4 Don't copy log messages to stderr, even #ifdef DEBUG. 
git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@125 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2002-04-15 08:28:43 +00:00
Dag-Erling Smørgrav b055d19eda Print a newline after an error or info message. 
git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@124 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2002-04-15 03:26:55 +00:00
Dag-Erling Smørgrav 2dc37c7bb2 Fix highly embarassing typo. This makes a good argument for using 
verbose variable names.


git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@122 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2002-04-15 02:31:56 +00:00
Dag-Erling Smørgrav 61c8a26c60 More checks & documentation, and fix some markup nits. 
Sponsored by:	DARPA, NAI Labs


git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@115 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2002-04-14 20:22:20 +00:00
Dag-Erling Smørgrav 2b0fbefd4a Move the policy-loading code into a separate file. 
Sponsored by:	DARPA, NAI Labs


git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@112 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2002-04-12 20:27:47 +00:00
Dag-Erling Smørgrav 56aafe38c0 Add openpam_{borrow,restore}_cred() (for temporarily switching to 
user credentials) and openpam_free_data() (generic cleanup function
for pam_set_data() consumers)

Sponsored by:	DARPA, NAI Labs


git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@106 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2002-04-08 13:42:13 +00:00
Dag-Erling Smørgrav ff571b036c If PAM_OLDAUTHTOK is set, we're asked for PAM_AUTHTOK, and we have 
to prompt the user, prompt her twice and compare the responses.

Sponsored by:	DARPA, NAI Labs


git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@105 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2002-04-06 21:23:26 +00:00
Dag-Erling Smørgrav c7010177aa Check flags carefully, and add documentation. 
Sponsored by:	DARPA, NAI Labs


git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@102 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2002-04-06 17:41:37 +00:00
Dag-Erling Smørgrav c9f74afc91 Plug memory leak, reduce differences between these very similar 
functions, and {add,tweak} documentation.

Sponsored by:	DARPA, NAI Labs


git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@101 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2002-04-06 17:17:44 +00:00
Dag-Erling Smørgrav 1eafe40ac3 Change pam_get_authtok()'s prototype so the caller can specify 
what token it wants.  Also introduce PAM_OLDAUTHTOK_PROMPT.

Sponsored by:	DARPA, NAI Labs


git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@100 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2002-04-06 17:05:21 +00:00
Dag-Erling Smørgrav 6a52d30938 Allocate the correct amount of memory for the environment list 
(forgot to multiply by sizeof(char *)).

Submitted by:	Takanori Saneto <sanewo@ba2.so-net.ne.jp>


git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@99 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2002-04-02 22:47:12 +00:00
Dag-Erling Smørgrav 8113558d3a Fix braino that arose from confusion between data and dp. This 
unbreaks the pam_ldap module.

Based on a patch by Joe Marcus Clarke <marcus@marcuscom.com>.

Sponsored by:	DARPA, NAI Labs


git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@98 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2002-04-01 14:13:56 +00:00
Dag-Erling Smørgrav 87b5599651 Suppress debug logs unless DEBUG is defined. 
Sponsored by:	DARPA, NAI Labs.


git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@95 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2002-03-14 20:54:16 +00:00
Dag-Erling Smørgrav 70efc25d1c Fix a number of bugs in the module cache: 
- Don't log dlopen() failures, since they're rarely interesting;
   instead, log a failure if no module was found at all.

 - When loading  a versioned module, store its logical name in the
   module structure rather than its physical name, since it will be
   looked up by its logical name if it's needed again.

 - Initialize module->next->prev when adding a module to the cache.

 - Set modules to NULL when releasing the last module in the cache.

Sponsored by:	DARPA, NAI Labs


git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@94 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2002-03-07 20:22:38 +00:00
Dag-Erling Smørgrav 8c639c01ef s/Technologies/Technology/ in copyright, and regenerate docs. 
git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@93 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2002-03-07 18:12:45 +00:00
Dag-Erling Smørgrav f2bc37d0d6 s/PAM_REINITIALISE_CRED/PAM_REINITIALIZE_CRED/ 
Sponsored by:	DARPA, NAI Labs


git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@92 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2002-03-07 13:09:46 +00:00
Dag-Erling Smørgrav 321d3cfb35 Add missing #include <string.h> 
git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@91 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2002-03-07 12:57:35 +00:00
Dag-Erling Smørgrav 676eb4cd21 Correct markup nit. 
Sponsored by:	DARPA, NAI Labs


git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@88 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2002-03-05 14:37:04 +00:00
Dag-Erling Smørgrav b61ca53417 Move most of the dynamic loader code into a separate file, and add 
support for module versioning.  OpenPAM will prefer a PAM module with
the same version number as the library itself to one with no version
number at all.

Sponsored by:	DARPA, NAI Labs


git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@87 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2002-03-05 14:20:26 +00:00
Dag-Erling Smørgrav 6f75ed6572 $Id$ -> $P4$ + regenerate man pages. 
git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@86 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2002-02-26 04:05:19 +00:00
Dag-Erling Smørgrav 7a936aa997 I was a little quick when I originally wrote this: the code only 
supported setting new options.  Add support for unsetting options
and changing the value of existing options.

Sponsored by:	DARPA, NAI Labs


git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@85 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2002-02-25 17:37:00 +00:00
Dag-Erling Smørgrav 6f078f6f97 Clear PAM_AUTHTOK after running the service modules. 
Sponsored by:	DARPA, NAI Labs


git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@82 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2002-02-23 18:07:30 +00:00
Dag-Erling Smørgrav 8ea571eeba - pam_sm_chauthtok() can return PAM_TRY_AGAIN. 
- "sufficient" should not terminate the chain if the PAM_PRELIM_CHECK
  flag is set.

Sponsored by: DARPA, NAI Labs


git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@81 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2002-02-23 18:06:45 +00:00
Dag-Erling Smørgrav ffabf53a8c Document PAM_TRY_AGAIN as a valid return value (cf. XSSO pp. 72-73) 
Sponsored by:	DARPA, NAI Labs


git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@80 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2002-02-23 18:03:53 +00:00