OpenPAM/OpenPAM
OpenPAM
/
OpenPAM
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
829 Commits 3 Branches 10 Tags 1.9 MiB
Commit Graph

67 Commits

Author SHA1 Message Date
Dag-Erling Smørgrav eefae6d5ef Rename release to Residacea. 
git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@936 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2017-04-30 21:14:17 +00:00
Dag-Erling Smørgrav ddb34ad671 Prepare to release OpenPAM Reboulia on Sunday. 
git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@934 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2017-04-26 20:53:18 +00:00
Dag-Erling Smørgrav 25bcbd2652 Prepare to release OpenPAM Radula. 
git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@923 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2017-02-19 19:31:16 +00:00
Dag-Erling Smørgrav 05afeb7a29 Document r918. 
git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@920 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2017-02-19 18:06:43 +00:00
Dag-Erling Smørgrav a18c87672e Postpone Radula until next Saturday. 
git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@912 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2017-01-21 14:48:30 +00:00
Dag-Erling Smørgrav adb7175c42 Prepare for releasing Radula on Saturday. 
git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@908 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2017-01-18 10:11:57 +00:00
Dag-Erling Smørgrav c75883564d Move OATH development to a branch. OATH will soon disappear entirely 
from this repository as Cryb takes over.


git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@907 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2017-01-18 09:39:01 +00:00
Dag-Erling Smørgrav 6846134790 Push back one day. 
git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@811 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2014-09-12 07:23:27 +00:00
Dag-Erling Smørgrav 1450290a72 typo 
git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@809 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2014-09-09 11:01:45 +00:00
Dag-Erling Smørgrav 95a55b95cf Prepare for releasing Ourouparia on Thursday. 
git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@806 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2014-09-09 09:33:54 +00:00
Dag-Erling Smørgrav 2ae3b8b727 Include CVE numbers when available 
git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@805 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2014-09-09 09:13:00 +00:00
Dag-Erling Smørgrav 547794d58e Remove keywords from pure text files. 
git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@804 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2014-09-09 09:11:31 +00:00
Dag-Erling Smørgrav 548c44573c Belatedly document the addition of module search paths. 
git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@800 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2014-09-08 12:42:29 +00:00
Dag-Erling Smørgrav 7dbd5c38b7 In openpam_parse_chain(): 
1. Finish a comment which was meant to describe the four different
   termination conditions for the loop in openpam_parse_chain() but
   ended in mid-sentence.

2. Ensure that errno is consistently set to EINVAL if a syntax error
   is encountered in the policy file.

3. If openpam_load_module() fails because the module could not be
   loaded, set errno to ENOEXEC instead of ENOENT.  This closes a hole
   where a missing module or a typo in a module name would cause the
   corresponding chain to fail open.  Normally, if the policy exists
   but cannot be loaded, openpam_load_chain() will return an error,
   and openpam_configure() will discard any partially constructed
   chains.  However, openpam_load_chain() interprets ENOENT to mean
   that the policy was not found, so it does not immediately return an
   error, the partially-loaded chain is not discarded, and the policy
   is incorrectly considered to have been successfully loaded.

4. Ensure that errors encountered while parsing an included policy are
   correctly propagated to the original policy, and that ENOENT while
   processing an include directive is a hard error, not a soft error.

CVE-2014-3879


git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@795 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2014-06-03 21:27:48 +00:00
Dag-Erling Smørgrav 46df1b1050 Document the is_upper() bug. 
git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@764 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2014-02-26 17:30:57 +00:00
Dag-Erling Smørgrav 2e6439e932 Prepare for OpenPAM Nummularia, which will be released later today from the 
nooath branch.


git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@735 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2013-09-07 12:37:27 +00:00
Dag-Erling Smørgrav 5847a34802 The --with-modules-dir configure option never quite worked, and became 
even more badly broken when the dynamic loader was rewritten in March.
Reimplement it the way it was always meant to work (but never did):

If --with-modules-dir was specified, modules will be installed in that
directory and the dynamic loader will look for them there.  If it was
not specified, modules will be installed in libdir and the dynamic
loader will use the standard search path (/usr/lib:/usr/local/lib).  In
both cases, a policy file can still name a module by its full path.


git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@690 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2013-08-15 13:22:51 +00:00
Dag-Erling Smørgrav 2be62b5732 Document the changes to the module loading code. 
git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@675 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2013-03-17 20:06:01 +00:00
Dag-Erling Smørgrav 4f9b0f6342 ...and there's more to come. 
git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@671 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2013-03-17 19:37:00 +00:00
Dag-Erling Smørgrav a9a5497d3f Reorganize: 
- move libpam into lib/libpam
 - move the OATH code into lib/liboath
 - move oath.h into include/security
 - update all pointers


git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@646 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2013-03-05 17:49:06 +00:00
Dag-Erling Smørgrav a1ee57dd24 Start preparing for the next release. 
git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@637 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2013-03-03 23:28:04 +00:00
Dag-Erling Smørgrav 42f7e1bd47 Update for Micrampelis 
git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@609 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2012-05-26 13:57:45 +00:00
Dag-Erling Smørgrav b28d2d21ed Reorder: feature, enhance, bugfix 
git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@593 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2012-04-08 13:21:06 +00:00
Dag-Erling Smørgrav 2eb15b15cc Start preparing for the next release. 
git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@590 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2012-04-08 12:57:57 +00:00
Dag-Erling Smørgrav fb9c3dcdf5 Normalize whitespace 
git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@513 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2012-01-10 21:05:42 +00:00
Dag-Erling Smørgrav 4aca0ed827 Set release date 
git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@504 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2011-12-18 14:11:12 +00:00
Dag-Erling Smørgrav 2b025676c7 Document increased input validation, and credit Sebastian Krahmer for 
bringing the issue to my attention.


git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@498 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2011-11-21 16:27:04 +00:00
Dag-Erling Smørgrav 0e65fdb799 Document the module ownership / permissions test. 
git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@495 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2011-11-20 03:03:22 +00:00
Dag-Erling Smørgrav 2603985187 Document quoted option values. 
git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@486 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2011-11-03 16:58:05 +00:00
Dag-Erling Smørgrav 28c2e4049f past tense 
git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@480 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2011-11-03 15:55:56 +00:00
Dag-Erling Smørgrav f0280932cb Rewrap 
git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@470 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2011-11-02 23:44:05 +00:00
Dag-Erling Smørgrav a3fc39b15b Mention pamtest(1). 
git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@469 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2011-11-02 23:43:54 +00:00
Dag-Erling Smørgrav 81b5c45be2 Add a new API function, openpam_subst(3), which replaces substitution 
codes in a string with the values of selected PAM items.  Use it for
prompts.

Furthermore, modify pam_get_user(3) and pam_get_authtok(3) to look for
module options named {user,authtok,oldauthtok}_prompt, as appropriate.
If found, these options take precedence over both the caller's prompt
and the PAM_{USER,AUTHTOK,OLDAUTHTOK}_PROMPT items.  The usefulness of
these options is somewhat limited by the fact that the policy file
parser does not support quoted strings; that's next on the todo list.


git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@455 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2011-10-29 18:31:11 +00:00
Dag-Erling Smørgrav da5d5b1268 past tense, for real 
git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@453 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2011-10-29 18:14:28 +00:00
Dag-Erling Smørgrav bb74f213ce past tense 
git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@452 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2011-10-29 18:13:13 +00:00
Dag-Erling Smørgrav a4a1255043 Tentatively set a name and approximate date for the next release. 
git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@451 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2011-10-29 18:11:53 +00:00
Dag-Erling Smørgrav 16844f8456 Update copyright and release notes. 
git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@437 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2011-09-13 12:00:13 +00:00
Dag-Erling Smørgrav bc44ba0ac2 Remove static build auto-detection. It was always an ugly hack, and it 
doesn't work at all on some platforms.  Instead of trying to figure it out
ourselves, rely on the user to specify it on the compiler command line.


git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@418 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2008-12-13 22:39:24 +00:00
Dag-Erling Smørgrav f79742eaab Final release date 
git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@409 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2007-12-21 11:38:50 +00:00
Dag-Erling Smørgrav 17826ec6d9 Change log for Hydrangea 
git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@406 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2007-12-19 11:39:15 +00:00
Dag-Erling Smørgrav a369352a23 Pick a name and a release date. 
git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@404 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2007-11-28 12:31:04 +00:00
Dag-Erling Smørgrav ce5921ba4c Convert $P4$ tags to $Id$. 
git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@320 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2006-02-16 20:33:19 +00:00
Dag-Erling Smørgrav c6c07709ad Start section for next release. 
git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@319 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2005-09-20 15:59:32 +00:00
Dag-Erling Smørgrav 4c55b07779 Roll OpenPAM Figwort. 
git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@312 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2005-06-16 15:46:58 +00:00
Dag-Erling Smørgrav 9443f9f3f9 Prepare for tomorrow's release of OpenPAM Feterita. 
git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@299 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2005-01-31 16:13:22 +00:00
Dag-Erling Smørgrav 5dcc905a94 Prepare to release OpenPAM Eelgrass. 
git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@278 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2004-02-10 11:00:53 +00:00
Dag-Erling Smørgrav bb34964217 Postpone Dogwood until tomorrow. 
git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@271 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2003-07-15 00:32:43 +00:00
Dag-Erling Smørgrav 51ec3dc33d Prepare to release OpenPAM Dogwood later today. 
git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@265 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2003-07-14 14:34:43 +00:00
Dag-Erling Smørgrav d228372583 Release documentation for OpenPAM Digitalis. 
git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@246 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2003-06-01 14:46:10 +00:00
Dag-Erling Smørgrav df6d850a38 Roll OpenPAM Dianthus. 
git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@213 185d5e19-27fe-0310-9dcf-9bff6b9f3609
 2003-05-02 16:59:28 +00:00