OpenPAM/OpenPAM

Commit Graph

Author	SHA1	Message	Date
Dag-Erling Smørgrav	9cd25f7e7d	Switch from $Id$ to $OpenPAM$. git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@938 185d5e19-27fe-0310-9dcf-9bff6b9f3609	2017-04-30 21:34:42 +00:00
Dag-Erling Smørgrav	26fbccde77	Bump dates if required on files modified in 2014 or later. git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@890 185d5e19-27fe-0310-9dcf-9bff6b9f3609	2016-01-11 16:22:09 +00:00
Dag-Erling Smørgrav	d84d7367fe	Add a feature flag to control whether to fall back to the "other" policy for chains that are still empty after the requested policy was loaded. git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@862 185d5e19-27fe-0310-9dcf-9bff6b9f3609	2015-07-30 23:42:38 +00:00
Dag-Erling Smørgrav	6d3ad38b26	Whitespace nit. git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@605 185d5e19-27fe-0310-9dcf-9bff6b9f3609	2012-04-20 11:05:10 +00:00
Dag-Erling Smørgrav	312b5753a5	Add an experimental mechanism for enabling / disabling optional features. Use it to control policy and module file checks. The default settings correspond to the current behavior: disallow path separators in policy names, but allow them in module names; verify ownership and permissions for both policy files and modules. git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@594 185d5e19-27fe-0310-9dcf-9bff6b9f3609	2012-04-14 14:18:41 +00:00
Dag-Erling Smørgrav	96357f3c52	Add an openpam_straddch() function that appends a character to a string, reallocating the string if necessary. Add an openpam_readword() function that reads a single word from a file according to the usual shell quoting rules. Add an openpam_readlinev() function that uses openpam_readword() to read an entire line and return a list of the words it contained. Rewrite openpam_parse_chain() using openpam_readlinev(), which greatly simplifies the code and ensures correct parsing of module option. Thanks to Maëlle Lesage for pointing out the issue and writing an early version of what became the main loop in openpam_readword(). git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@547 185d5e19-27fe-0310-9dcf-9bff6b9f3609	2012-04-01 15:01:21 +00:00
Dag-Erling Smørgrav	8e881dbdd7	Fix some embarassing typos introduced in the openpam_straddch() cleanup. Move prototype from "opempam_impl.h" to <security/openpam.h>. Generate openpam_straddch(3) man page. git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@535 185d5e19-27fe-0310-9dcf-9bff6b9f3609	2012-03-31 14:55:19 +00:00
Dag-Erling Smørgrav	b616ada557	Add another log level, PAM_LOG_LIBDEBUG, with a negative priority. It is currently equivalent to PAM_LOG_DEBUG, and is used only by the library call tracing macros (ENTER() and RETURN()). It should eventually replace PAM_LOG_DEBUG throughout the library, except perhaps for a few particularly interesting messages; PAM_LOG_DEBUG will be reserved for modules. git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@522 185d5e19-27fe-0310-9dcf-9bff6b9f3609	2012-01-11 00:13:25 +00:00
Dag-Erling Smørgrav	81b5c45be2	Add a new API function, openpam_subst(3), which replaces substitution codes in a string with the values of selected PAM items. Use it for prompts. Furthermore, modify pam_get_user(3) and pam_get_authtok(3) to look for module options named {user,authtok,oldauthtok}_prompt, as appropriate. If found, these options take precedence over both the caller's prompt and the PAM_{USER,AUTHTOK,OLDAUTHTOK}_PROMPT items. The usefulness of these options is somewhat limited by the fact that the policy file parser does not support quoted strings; that's next on the todo list. git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@455 185d5e19-27fe-0310-9dcf-9bff6b9f3609	2011-10-29 18:31:11 +00:00
Dag-Erling Smørgrav	16844f8456	Update copyright and release notes. git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@437 185d5e19-27fe-0310-9dcf-9bff6b9f3609	2011-09-13 12:00:13 +00:00
Dag-Erling Smørgrav	b4871fa6dc	Update copyright dates. git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@435 185d5e19-27fe-0310-9dcf-9bff6b9f3609	2010-03-10 11:38:49 +00:00
Dag-Erling Smørgrav	1f70254313	Fix double-UTF git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@423 185d5e19-27fe-0310-9dcf-9bff6b9f3609	2009-10-29 17:08:38 +00:00
Dag-Erling Smørgrav	e9776bfa73	Convert everything to UTF-8. git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@422 185d5e19-27fe-0310-9dcf-9bff6b9f3609	2009-10-18 22:19:57 +00:00
Dag-Erling Smørgrav	5a523baf2b	Update copyright git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@420 185d5e19-27fe-0310-9dcf-9bff6b9f3609	2009-06-12 19:12:42 +00:00
Dag-Erling Smørgrav	bc44ba0ac2	Remove static build auto-detection. It was always an ugly hack, and it doesn't work at all on some platforms. Instead of trying to figure it out ourselves, rely on the user to specify it on the compiler command line. git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@418 185d5e19-27fe-0310-9dcf-9bff6b9f3609	2008-12-13 22:39:24 +00:00
Dag-Erling Smørgrav	9f0d6d6267	Update copyright, and coincidentially root out the last remaining vestige of iso-8859-1 in favor of utf-8. git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@417 185d5e19-27fe-0310-9dcf-9bff6b9f3609	2008-02-14 18:36:22 +00:00
Dag-Erling Smørgrav	fd5e5d917d	Update copyright. git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@408 185d5e19-27fe-0310-9dcf-9bff6b9f3609	2007-12-21 11:36:24 +00:00
Dag-Erling Smørgrav	876e12a0c0	Rename <security/pam_attributes.h> to <security/openpam_attr.h>. git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@405 185d5e19-27fe-0310-9dcf-9bff6b9f3609	2007-12-19 11:38:27 +00:00
Dag-Erling Smørgrav	911d657644	Get rid of the module cache; it serves little purpose, and makes OpenPAM thread-unsafe. git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@403 185d5e19-27fe-0310-9dcf-9bff6b9f3609	2007-11-28 12:29:08 +00:00
Dag-Erling Smørgrav	e725df8bb1	Style cleanup; correct some namespace violations (breaking source compatibility in the process, but only for OpenPAM-specific features) git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@401 185d5e19-27fe-0310-9dcf-9bff6b9f3609	2007-11-28 12:25:53 +00:00
Dag-Erling Smørgrav	e484c931ae	Constify. git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@400 185d5e19-27fe-0310-9dcf-9bff6b9f3609	2007-10-24 15:04:23 +00:00
Dag-Erling Smørgrav	ce5921ba4c	Convert $P4$ tags to $Id$. git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@320 185d5e19-27fe-0310-9dcf-9bff6b9f3609	2006-02-16 20:33:19 +00:00
Dag-Erling Smørgrav	4243d0384f	Centralize macros used for hiding GCC-specific attributes. Use attributes for publicly exported functions. Submitted by: "Dmitry V. Levin" <ldv@altlinux.org> git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@318 185d5e19-27fe-0310-9dcf-9bff6b9f3609	2005-09-20 15:58:54 +00:00
Dag-Erling Smørgrav	9d0dd0c39b	Add openpam_free_envlist(). I'm tired of freeing them by hand. git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@289 185d5e19-27fe-0310-9dcf-9bff6b9f3609	2005-01-28 14:47:41 +00:00
Dag-Erling Smørgrav	187f68b10f	Tell gcc that _openpam_log() behaves like printf(). git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@276 185d5e19-27fe-0310-9dcf-9bff6b9f3609	2003-12-11 17:37:14 +00:00
Dag-Erling Smørgrav	27480e5170	FOPEN_MAX wasn't such a reliable <stdio.h> indicator after all, so use _IOFBF instead. git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@269 185d5e19-27fe-0310-9dcf-9bff6b9f3609	2003-07-14 23:53:19 +00:00
Dag-Erling Smørgrav	21f58dc32e	Use read(2) on fileno(stdin) rather than fgets(3). This make timeout handling considerably simpler, eliminating the need for setjmp(3) and evil global variables. Portions submitted by: Dmitry V. Levin <ldv@altlinux.org> git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@264 185d5e19-27fe-0310-9dcf-9bff6b9f3609	2003-07-14 14:17:47 +00:00
Dag-Erling Smørgrav	049385996b	Give up trying to keep track of what has changed and what hasn't; just slap a 2003 copyright on everything. git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@245 185d5e19-27fe-0310-9dcf-9bff6b9f3609	2003-06-01 14:34:11 +00:00
Dag-Erling Smørgrav	6c68711fe1	Continue improving the new configuration parser, particularly error reporting: error messages relating to policy files now include line numbers, and the parser will warn about invalid facility names. Also fix an off-by-one bug in the option handling code. git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@241 185d5e19-27fe-0310-9dcf-9bff6b9f3609	2003-05-26 15:31:28 +00:00
Dag-Erling Smørgrav	0fe6f41f7c	Overhaul the configuration parser. This adds support for continuation lines and policy inclusion. git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@240 185d5e19-27fe-0310-9dcf-9bff6b9f3609	2003-05-25 18:34:31 +00:00
Dag-Erling Smørgrav	ed3d5a8522	DBA update and minor whitespace fixes. git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@157 185d5e19-27fe-0310-9dcf-9bff6b9f3609	2002-06-07 18:22:57 +00:00
Dag-Erling Smørgrav	859840dd61	GCC 3 is upon us. Sponsored by: DARPA, NAI Labs git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@147 185d5e19-27fe-0310-9dcf-9bff6b9f3609	2002-05-24 14:27:09 +00:00
Dag-Erling Smørgrav	ad8d33ef88	Add a null conversation function. Sponsored by: DARPA, NAI Labs git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@129 185d5e19-27fe-0310-9dcf-9bff6b9f3609	2002-04-17 06:46:51 +00:00
Dag-Erling Smørgrav	eabc266fb3	Fix braino in the gcc version of the openpam_log() macro. Sponsored by: DARPA, NAI Labs git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@128 185d5e19-27fe-0310-9dcf-9bff6b9f3609	2002-04-16 23:29:40 +00:00
Dag-Erling Smørgrav	71b9434c2f	Fix typo in openpam_log macro. git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@113 185d5e19-27fe-0310-9dcf-9bff6b9f3609	2002-04-13 00:12:46 +00:00
Dag-Erling Smørgrav	3f41e83845	Adopt the same preprocessor tricks that Linux-PAM uses for modules. This reduces the amount of changes needed to adopt modules written for Linux-PAM. Sponsored by: DARPA, NAI Labs git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@111 185d5e19-27fe-0310-9dcf-9bff6b9f3609	2002-04-12 20:16:08 +00:00
Dag-Erling Smørgrav	56aafe38c0	Add openpam_{borrow,restore}_cred() (for temporarily switching to user credentials) and openpam_free_data() (generic cleanup function for pam_set_data() consumers) Sponsored by: DARPA, NAI Labs git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@106 185d5e19-27fe-0310-9dcf-9bff6b9f3609	2002-04-08 13:42:13 +00:00
Dag-Erling Smørgrav	b2b11d5483	Fix bugs in portability code; libpam now builds on NetBSD 1.5.2. Sponsored by: DARPA, NAI Labs git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@104 185d5e19-27fe-0310-9dcf-9bff6b9f3609	2002-04-06 19:02:06 +00:00
Dag-Erling Smørgrav	1eafe40ac3	Change pam_get_authtok()'s prototype so the caller can specify what token it wants. Also introduce PAM_OLDAUTHTOK_PROMPT. Sponsored by: DARPA, NAI Labs git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@100 185d5e19-27fe-0310-9dcf-9bff6b9f3609	2002-04-06 17:05:21 +00:00
Dag-Erling Smørgrav	8c639c01ef	s/Technologies/Technology/ in copyright, and regenerate docs. git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@93 185d5e19-27fe-0310-9dcf-9bff6b9f3609	2002-03-07 18:12:45 +00:00
Dag-Erling Smørgrav	b61ca53417	Move most of the dynamic loader code into a separate file, and add support for module versioning. OpenPAM will prefer a PAM module with the same version number as the library itself to one with no version number at all. Sponsored by: DARPA, NAI Labs git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@87 185d5e19-27fe-0310-9dcf-9bff6b9f3609	2002-03-05 14:20:26 +00:00
Dag-Erling Smørgrav	6f75ed6572	$Id$ -> $P4$ + regenerate man pages. git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@86 185d5e19-27fe-0310-9dcf-9bff6b9f3609	2002-02-26 04:05:19 +00:00
Dag-Erling Smørgrav	5c3fadae16	Add openpam_get_option() and openpam_set_option(). Sponsored by: DARPA, NAI Labs git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@74 185d5e19-27fe-0310-9dcf-9bff6b9f3609	2002-02-22 21:33:49 +00:00
Dag-Erling Smørgrav	8c45582bf1	Move the linker set stuff into a separate file, and rename the linker set for cosmetic reasons. Sponsored by: DARPA, NAI Labs git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@70 185d5e19-27fe-0310-9dcf-9bff6b9f3609	2002-02-20 15:33:11 +00:00
Dag-Erling Smørgrav	32040ec571	Make C++-safe. Sponsored by: DARPA, NAI Labs git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@42 185d5e19-27fe-0310-9dcf-9bff6b9f3609	2002-02-09 15:43:36 +00:00
Dag-Erling Smørgrav	a139b62d54	Introduce pam_v{info,error,prompt}(). Move OpenPAM API extensions into <security/openpam.h> to avoid namespace pollution for apps or modules that do not use them. Sponsored by: DARPA, NAI Labs git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@39 185d5e19-27fe-0310-9dcf-9bff6b9f3609	2002-02-07 12:22:08 +00:00
Dag-Erling Smørgrav	4166f73f32	Add support for static linking. Also rename a handful of constants to reduce the chance of every running into a naming conflict. Sponsored by: DARPA, NAI Labs git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@32 185d5e19-27fe-0310-9dcf-9bff6b9f3609	2002-02-04 23:22:40 +00:00
Dag-Erling Smørgrav	560591adc6	Remove trailing commas from enum lists. git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@23 185d5e19-27fe-0310-9dcf-9bff6b9f3609	2002-02-04 14:01:26 +00:00
Dag-Erling Smørgrav	236a7d8507	Rename openpam_log() to _openpam_log(), add an argument for the function name, and wrap it in a macro called openpam_log(). Sponsored by: DARPA, NAI Labs git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@13 185d5e19-27fe-0310-9dcf-9bff6b9f3609	2002-02-01 21:35:31 +00:00
Dag-Erling Smørgrav	fbb6651eb0	Add openpam_ttyconv(), a simple tty-based conversation function. Prototype it in the new <security/openpam.h> header. Move the prototype for openpam_log() there too (as well as the log level constants) so modules and applications can use it if they want to. Have lib/openpam.h include <security/openpam.h>. Sponsored by: DARPA, NAI Labs git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@9 185d5e19-27fe-0310-9dcf-9bff6b9f3609	2002-02-01 20:41:47 +00:00

50 Commits