d/freebsd-dev
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
158,404 Commits 72 Branches 135 Tags 3.2 GiB
f700faa590
Commit Graph

496 Commits

Author SHA1 Message Date
Daniel Eischen
419ecd5dee Bump library versions in preparation for 7.0. 
Ok'd by:	kan
 2007-05-21 02:49:08 +00:00
Dag-Erling Smørgrav
b31d5b56ec strlcpy() may be faster than snprintf(), but it is less portable, and this 
is not performance critical code anyway.  Also, avoid using strlen() to
obtain information which we already have.

MFC after:	3 weeks
 2007-05-11 11:10:05 +00:00
Dag-Erling Smørgrav
4d09ed1e67 Fix typo. 
Submitted by:	Bård Skaflestad <bardsk@math.ntnu.no>
 2007-05-10 18:15:30 +00:00
Dag-Erling Smørgrav
8f9085389f Well gag me with a spoon... I'm so used to working at high WARNS levels 
that I make stupid fundamental mistakes like this when I don't.
 2007-05-10 15:01:42 +00:00
Dag-Erling Smørgrav
b252bedcc9 Remove superfluous unexpanded RCS tag. 2007-05-10 14:56:07 +00:00
Dag-Erling Smørgrav
3884dc6768 Use flopen(3). 
MFC after:	3 weeks
 2007-05-10 14:54:53 +00:00
Dag-Erling Smørgrav
3dea593400 DTRT when O_NONBLOCK is specified. 
MFC after:	3 weeks
 2007-05-10 14:52:57 +00:00
Dag-Erling Smørgrav
9667055264 I'm tired of seeing this done incorrectly and non-portably, so add a 
flopen(3) function which reliably opens and locks a file.

MFC after:	3 weeks
 2007-05-10 14:43:31 +00:00
Yaroslav Tykhiy
f855462a24 Fix one kind of style(9) bug and a typo in a comment. 
Tested with:	md5(1)
 2007-05-01 18:50:33 +00:00
Warner Losh
ee7093a640 Remove California Regent's clause 3, per letter 2007-01-09 01:02:06 +00:00
Tom Rhodes
d3dc0c9de4 Fix a typo: "the give login class" to "the given login class." 
PR:		75577
Submitted by:	Nobuyuki Koganemaru
 2006-11-05 19:00:08 +00:00
Ruslan Ermilov
f0d43ae993 Fix markup in previous revision. 2006-10-10 08:15:08 +00:00
Tom Rhodes
5e058b334c Add information on how to escape a literal colon in a value or name. 
PR:	101262
 2006-10-09 22:35:02 +00:00
Ruslan Ermilov
ad136d1e29 Revise markup in recently added manpages. 2006-09-30 10:34:13 +00:00
Ruslan Ermilov
a73a3ab56b Markup fixes. 2006-09-17 21:27:35 +00:00
Thomas Quinot
3a1d9c271b Minor comment fix. 2006-09-08 08:14:32 +00:00
Thomas Quinot
71219ddbd1 (pw_copy): Handle the case of a malformed line in master.passwd 
(copy it silently, do not dereference NULL pointer).

PR:             bin/102848
Reviewed by:    security-officer (cperciva)
MFC after:      1 week
 2006-09-04 15:09:21 +00:00
Yaroslav Tykhiy
6599d1e129 Recognize the existence of auth' and auth-type' 
capabilities but tell they do nothing in the base system.

This is a late responce to
http://docs.freebsd.org/cgi/mid.cgi?ED759F1DC5ADD74592DD063B1EDEDAF803ACD2B5
.

Obtained from:	OpenBSD (wording; with minor corrections)
 2006-08-23 09:54:46 +00:00
Yaroslav Tykhiy
74d580d770 style.Makefile(5) is good for our eyes. 2006-07-27 12:36:46 +00:00
Warner Losh
d5fbc8f429 Note the convention that humanize_number follows. 
Add 'engineering' numbers to table.
 2006-07-15 20:53:36 +00:00
Maxim Konovalov
a07b02ef92 o Add missed comma, xref kld(4). 2006-07-12 14:33:52 +00:00
Brian Somers
25b5a928f7 Remove some unused variables 2006-06-23 01:42:03 +00:00
Maxim Konovalov
613c94ac78 o Typo: ownship -> ownership. 
Obtained from:	DragonFlyBSD
 2006-06-17 07:25:58 +00:00
Shunsuke Akiyama
b3c87f5c78 Specify default path for SHLIBDIR before bsd.own.mk does. 
This fix shared library installed correct place.
 2006-06-11 09:14:06 +00:00
Xin LI
db31b8ae3c Don't build IPv6 support if we have choosen not to have it. 2006-06-09 18:11:29 +00:00
Xin LI
aa5c5263bc - Add include for libutil.h and string.h for prototype. 
- Cast the rvalue to be compared with the result of
   strlen() to size_t.
 2006-05-25 04:01:04 +00:00
Hajimu UMEMOTO
794063c03f Bump library majro version for gethostbyaddr(3). 2006-05-21 15:15:21 +00:00
Christian Brueffer
b208d15b48 Document how the backoff delay is calculated. 
Submitted by:	markus
MFC after:	3 days
 2006-04-19 17:46:27 +00:00
John-Mark Gurney
4d5e876be3 use pwrite to always write at the begining of the file.. If multiple calls 
to pidfile_write happen, the pidfile will have nul characters prepended
due to the cached file descriptor offset...

Reviewed by:	scottl
MFC after:	3 days
 2006-04-11 23:10:02 +00:00
Giorgos Keramidas
ef608a6008 Use intmax_t' instead of plain int' for pid_t casts. 
Useful tips from:	ru, bde
Approved by:		pjd
MFC after:		3 days
 2006-03-04 15:20:28 +00:00
Dag-Erling Smørgrav
501092bbc8 Add utility functions for checking if a given kernel module is loaded, 
and loading it.
 2006-02-18 11:25:28 +00:00
Pawel Jakub Dawidek
560c4fc142 - Add a note that passing NULL to pidfile_write(), pidfile_remove() and 
pidfile_close() functions is safe. This possibility is used in example code.
- Cast pid_t to int.

Requested by:	yar
 2006-01-28 14:13:15 +00:00
Olivier Houchard
db256336b8 Teach openpty() how to deal with pts. 2006-01-26 01:33:26 +00:00
Robert Watson
d2042d2052 Restore use of strncpy(), as there is later unconditional termination 
of the string, and reliance on the returned pointer.

Found by:	bde (tm)
 2006-01-16 11:54:07 +00:00
Robert Watson
ba183db70c Replace strncpy() with strlcpy() when parsing login time limit strings 
from /etc/login.conf, or an unterminated string buffer could result.
Probably, login_times.c should reject excessively long time strings as
unparseable, rather than truncating, which might render an invalid
string valid.

Found with:	Coverity Prevent (tm)
Reviewed by:	csjp
MFC after:	3 days
 2006-01-16 00:52:20 +00:00
Robert Watson
8e3ae6fe69 Fix typo in comment. 
MFC after:	3 days
 2006-01-16 00:28:11 +00:00
Christian S.J. Peron
111a16a8ee Document the LOGIN_SETMAC setusercontext(3) flag. While we are here, drop 
in an external reference to mac_set_proc(3).
 2005-12-30 06:16:20 +00:00
John Baldwin
a54bb702d7 Restore the previous state after a FILL operation in properties_read() 
rather than forcing the state to LOOK.  If we are in the middle of parsing
a line when we have to do a FILL we would have lost any token we were in
the middle of parsing and would have treated the next character as being
at the start of a new line instead.

PR:		kern/89181
Submitted by:	Antony Mawer gnats at mawer dot org
MFC after:	1 week
 2005-11-28 16:30:16 +00:00
Ruslan Ermilov
877205d1d4 Fix prototype. 2005-11-24 11:29:11 +00:00
Ruslan Ermilov
6b84cd5819 Fix markup, grammar and spelling. 2005-11-18 14:21:28 +00:00
Brooks Davis
72bd741cfc When removing the local domain, only do so when the result will be a 
host name.  This is matches the documented behaviro.  The previous
behavior would remove the domain name even if the result retained a dot.

This fixes rsh connections from a.example.com to example.com.

Reviewed by:	ceri (at least the concept)
 2005-10-05 04:42:20 +00:00
Pawel Jakub Dawidek
8b28aef238 Pidfiles should be created with permission preventing users from opening 
them for reading. When user can open file for reading, he can also
flock(2) it, which can lead to confusions.

Pointed out by:	green
 2005-09-16 11:24:28 +00:00
Pawel Jakub Dawidek
412fa8f114 Add a family of functions for reliable pidfiles handling. 
Idea from:	jmg
Discussed on:	arch@
 2005-08-24 17:21:38 +00:00
Ken Smith
a84020c2b9 Bump the shared library version number of all libraries that have not 
been bumped since RELENG_5.

Reviewed by:	ru
Approved by:	re (not needed for commit check but in principle...)
 2005-07-22 17:19:05 +00:00
Hajimu UMEMOTO
4f10131848 NI_WITHSCOPEID cleanup. Neither RFC 2553 nor RFC 3493 defines 
NI_WITHSCOPEID, and our getaddrinfo(3) does nothing special
for it, now.
 2005-05-13 16:31:11 +00:00
Tom Rhodes
043d661d53 Properly spell default in a comment. 2005-04-22 23:11:57 +00:00
Xin LI
13c273c81a Remove duplicated "bytes". 
Submitted by:	Wojciech A. Koszek [dunstan freebsd czest pl]
PR:		79747
 2005-04-10 12:15:25 +00:00
Tom Rhodes
9c512d4ae0 Fix grammatical issue. 
Submitted by:	ceri
 2005-02-27 22:24:24 +00:00
Tom Rhodes
16814e4c71 Use ~/.login_conf when discussing a user's local file. 
Suggested by:	ru
 2005-02-26 23:41:04 +00:00
Tom Rhodes
59fa1b558e Reword previous commit to be a bit more correct and provide more information. 
Inspiried by:	ru
 2005-02-25 00:32:41 +00:00
Tom Rhodes
ef8bcbfb41 Make it more obvious that cap_mkdb(1) is required to rebuild the database. 
PR:		76981
Submitted by:	Lowell Gilbert <freebsd-bugs-local@be-well.ilk.org>
 2005-02-23 22:11:59 +00:00
Ruslan Ermilov
0227791b40 Expand *n't contractions. 2005-02-13 22:25:33 +00:00
Ruslan Ermilov
720e293ae7 Reflect the reality; only crypt(3) uses /etc/auth.conf 
for the time being.
 2005-01-21 12:07:46 +00:00
Ruslan Ermilov
24a0682c64 Sort sections. 2005-01-20 09:17:07 +00:00
Ruslan Ermilov
2d82ac3110 Scheduled mdoc(7) sweep. 2005-01-11 20:50:51 +00:00
Tom Rhodes
8f79184fe2 Various markup and spelling fixes. 
PR:		75574
Submitted by:	Nobuyuki Koganemaru <n-kogane@syd.odn.ne.jp> (original version)
 2004-12-29 02:18:24 +00:00
Ruslan Ermilov
9a5393ac68 Grammar in a comment. 2004-12-18 12:31:12 +00:00
Pawel Jakub Dawidek
69560edc13 Backout manual page updates. 
Requested by:	ru
 2004-09-26 12:08:31 +00:00
Pawel Jakub Dawidek
bd52c9ac59 Take the lastest fixes from NetBSD. 
Obtained from:	NetBSD
 2004-09-25 14:11:34 +00:00
Pawel Jakub Dawidek
8914c29937 There is no such manual page in FreeBSD. 2004-09-16 18:32:58 +00:00
David E. O'Brien
b35b4dcba7 Document when this function came into FreeBSD. 2004-08-21 03:31:17 +00:00
Peter Pentchev
b047cf9879 Spell FTP correctly - in this case, it is used as the name of the protocol, 
not the program.  Also, bump the document date.

Reminded by:	our resident mdoc guard (ru)
 2004-08-06 12:56:39 +00:00
Peter Pentchev
1575f75dc9 Add Giorgos's description of the ftp-chroot login.conf option. 
Reported by:	Bill Moran <wmoran@potentialtech.com>
Submitted by:	keramida
MFC after:	2 weeks
 2004-08-06 10:43:24 +00:00
Ruslan Ermilov
fd13236829 Markup fixes. 2004-07-07 20:25:54 +00:00
Ruslan Ermilov
30950a21e1 Eliminate double whitespace. 2004-07-03 22:30:10 +00:00
Ruslan Ermilov
1a0a934547 Mechanically kill hard sentence breaks. 2004-07-02 23:52:20 +00:00
Pawel Jakub Dawidek
e27d191348 Humanize_number(3) is a part of libutil. 2004-05-25 20:11:50 +00:00
Tom Rhodes
d268591bf7 You want to include libutil.h, not util.h. 
Some minor sentence tweaking.
 2004-05-25 18:53:54 +00:00
Pawel Jakub Dawidek
23d1a17825 Add humanize_number(3) to libutil for formating numbers into a human 
readable form.

Obtained from:	NetBSD
 2004-05-24 22:19:27 +00:00
Stefan Farfeleder
ec18ee18ad Don't depend on NULL's expansion being a pointer, cast it before it is passed 
to variadic functions.

Approved by:	das (mentor)
 2004-05-18 15:53:58 +00:00
Diomidis Spinellis
26eff9e85b Fix and clarify unparsable sentence. 
MFC after:	2 weeks
 2004-05-11 11:10:09 +00:00
Diomidis Spinellis
94cf9da03c Bring the description for login_getclassbyname in sync with the function's 
arguments.  The function has as a second argument a struct passwd * pointer,
not a directory name.

MFC after:	2 weeks
 2004-05-11 11:05:26 +00:00
Tim Kientzle
09951e89e9 Back out the "clean_environment()" function from libutil. 
Further contemplation has convinced me that this was
not going to really solve the problem of environment-poisoning
without raising serious administrative headaches.  There
must be a better way...
 2004-02-29 22:13:28 +00:00
Tim Kientzle
a0a7e17219 Add the clean_environment call to libutil.h also. 
MFC after: 2 weeks
 2004-02-26 22:44:11 +00:00
Tim Kientzle
f9efe8694a Add a clean_environment call to libutil. 
This function removes all environment variables except
the ones listed on a "whitelist."

The function accepts two whitelist arguments.
If the first is NULL, a built-in default list will be
used.  This allows callers to get a variety of behaviors:
  * Default screening: provide NULL for both lists
  * Custom screening: provide a custom list for the first argument
  * Modified default screening: provide NULL for first arg,
     list of additional variables to preserve in the second arg

Idea from: Jacques Vidrine

MFC after: 2 weeks
 2004-02-26 22:41:47 +00:00
Robert Watson
c5df72d83f Bump the major version on libtuil. libutil now relies on the mac_* 
symbols exported by newer versions of libc, and so we want applications
depending on the newer library code to be required to link against the
newer libc.

Discussed with:	scottl, kris, imp
 2003-11-12 21:56:07 +00:00
Tim J. Robbins
d210c39f49 Remove __NETBSD_SYSCALLS. 2003-10-29 10:55:56 +00:00
Peter Wemm
05bcd1d098 (mostly) Clean up some const warnings here. The code takes some liberties 
because it is the originator of various const strings and knows that they
came from malloc.
 2003-10-26 03:51:47 +00:00
Mark Murray
547fa0d9b7 ANSIfy, WARNSify, CONSTify. Bit of style(9)-ify. 2003-10-18 10:04:16 +00:00
Mark Murray
804b0f979a Remove a GCC specifig CFLAG. We should be using WARNS=? for this. 
WARNS=? is not added here at this point, because I've not tested
it on enough platforms, and I don't want to break builds.
 2003-10-18 09:58:39 +00:00
Ruslan Ermilov
743d5d518c mdoc(7): Properly mark C headers. 2003-09-10 19:24:35 +00:00
David E. O'Brien
4f4a104ee8 style.Makefile(5) 2003-08-18 15:25:39 +00:00
Gordon Tetlow
41d8423f71 Stage 3 of dynamic root support. Make all the libraries needed to run 
binaries in /bin and /sbin installed in /lib. Only the versioned files
reside in /lib, the .so symlink continues to live /usr/lib so the
toolchain doesn't need to be modified.
 2003-08-17 08:28:46 +00:00
Mark Murray
0ebec5d3c8 Tidy up. Sort headers. 2003-06-14 18:42:37 +00:00
Murray Stokely
eb8b21f78b Backout last commit. It is redundant in -CURRENT. 
Pointed out by:	David Schultz
 2003-05-05 06:25:03 +00:00
Murray Stokely
d8082d11aa Note that the idletime setting is not enforced. 
PR:		docs/40952
MFC After:	3 days
 2003-05-04 21:35:41 +00:00
Murray Stokely
df788a526f Document the login-backoff and login-retries capabilities. 
PR:		docs/51397
MFC After:	3 days
 2003-05-04 06:43:24 +00:00
Tom Rhodes
6c4e78ae1a Add vmemoryuse to the list. 
PR:		50796
Submitted by:	Dmitry Sivachenko <mitya@cavia.pp.ru>
 2003-04-26 15:15:05 +00:00
Dag-Erling Smørgrav
b7d6bb0833 Brucify. 2003-04-10 10:26:18 +00:00
Dag-Erling Smørgrav
e7d9d9217c Correctly detect the case where a password entry was changed while we were 
preparing to edit it.

PR:		bin/50563
 2003-04-09 18:20:51 +00:00
Dag-Erling Smørgrav
e947f78c16 Apply the correct fix for bin/50679: don't mess around with process groups 
or the tty, just block selected signals in the parent like system(3) does.
Many thanks to bde for his assistance in finding the correct solution.

PR:		bin/50679
 2003-04-09 16:39:47 +00:00
Dag-Erling Smørgrav
c794881f8c Band-aid for the "^C kills the editor" problem. I haven't yet found the 
proper way to fix this.  The way this works is to prepend "exec " to
the editor command to eliminate the "shell in the middle" which prevents
us from properly reawakening the editor after a SIGTSTP.

PR:		bin/50679
 2003-04-08 18:04:30 +00:00
Philippe Charnier
0552350ecc The .Fn function 2003-03-24 16:02:05 +00:00
David Schultz
5d907c3dd2 Make pw_edit() use /bin/sh to interpret the EDITOR environment 
variable.

PR:		48748
Reviewed by:	mike (mentor)
 2003-03-17 02:12:55 +00:00
David Schultz
9c04284549 Re-document unimplemented capabilities that were removed in the last 
revision of this file, but note that they are not supported in the
base system.

Requested by:	ache
Reviewed by:	ache, mike (mentor)
 2003-03-05 00:21:35 +00:00
David Schultz
9f7b7e45d1 - Document the fact that we now use pam_passwdqc(8) to check 
password quality, not login.conf(5).
- Move warnexpire and warnpasswd from the ``Accounting Limits''
  section to ``Authentication'', and nix everything else in the
  former section.  The accounting knobs are not available in
  the base system, and the subset of them available in ports
  should be documented in the ports' manpages.

PR:		47960
Reviewed by:	mike (mentor), doc
 2003-03-03 05:09:24 +00:00
Ruslan Ermilov
522ccf3f35 mdoc(7) police: markup laundry. 2003-02-23 01:47:49 +00:00
Andrey A. Chernov
5fe03aba37 Now return NULLified struct in case of empty config file 
(previous variant return NULL pointer for both empty file case and error case,
so caller can't sense error properly).

It not affect existen programs because property_find() now returns NULL
for both NULL pointer and NULLified struct.
 2003-01-27 03:39:33 +00:00
Andrey A. Chernov
33a155e400 Handle read errors 2003-01-27 03:14:04 +00:00
Andrey A. Chernov
779092a489 Add (unsigned char) cast to ctype macros 
Handle NULL return from malloc and strdup
 2003-01-19 03:05:01 +00:00
Jens Schweikhardt
d64ada501a Fix typos, mostly s/ an / a / where appropriate and a few s/an/and/ 
Add FreeBSD Id tag where missing.
 2002-12-30 21:18:15 +00:00
Jens Schweikhardt
57bd0fc6e8 english(4) police. 2002-12-27 12:15:40 +00:00
Chris Costello
2db19028d3 Document the `label' capability. 
Approved by:	re
Sponsored by:	DARPA, Network Associates Labs
Obtained from:	TrustedBSD Project
 2002-11-22 22:22:10 +00:00
Peter Wemm
f316609eb4 Oops. Some ut_time stuff slipped through the cracks. These turned out 
to be non-fatal due to stack alignment roundups.
 2002-11-17 23:46:45 +00:00
Robert Watson
433c28e012 Add LOGIN_SETMAC to the list of flags that can't be set without class 
information, since we rely on the pwd entry to know what MAC labels
to set as part of the login process.

Obtained from:	TrustedBSD Project
Sponsored by:	DARPA, Network Associates Laboratories
 2002-11-12 22:30:01 +00:00
Sheldon Hearn
a4df5101a3 Use "deprecated" instead of "depreciated" where appropriate. 2002-10-30 07:49:11 +00:00
Dag-Erling Smørgrav
6dcfea0f37 Don't forget to '\n'-terminate new entries. This unbreaks chpass -a. 
Submitted by:	joerg
 2002-10-29 13:58:42 +00:00
Robert Watson
84333872d8 If LOGIN_SETMAC is set and MAC is enabled in the kernel, then see 
if the user has a 'label' entry in their login class.  If so, attempt
to set that label on the process as part of the credential setup.  If
we're unable to parse the label, or unable to set the label, fail.
In the future, we may also want to warn if a label is set but the
kernel doesn't support MAC.

Approved by:	re
Obtained from:	TrustedBSD Project
Sponsored by:	DARPA, Network Associates Laboratories
 2002-10-23 03:17:22 +00:00
Peter Wemm
224af215a6 Zap now-unused SHLIB_MINOR 2002-09-28 00:25:32 +00:00
Philippe Charnier
7fed38d0a0 Replace various spelling with FALLTHROUGH which is lint()able 2002-08-25 13:10:45 +00:00
Robert Watson
27a68d26ae Add LOGIN_SETMAC, which will indicate to the user context management code 
that it should also set the user's default MAC label, if available and
permitted.

Obtained from:	TrustedBSD Project
Sponsored by:	DARPA, NAI Labs
 2002-08-16 02:14:21 +00:00
Robert Watson
909410cf5b Whitespace cleanup--it's not style(9), but it is consistent. Prep 
for MAC-related commits to the login infrastructure.

Obtained from:	TrustedBSD Project
Sponsored by:	DARPA, NAI Labs
 2002-08-11 01:48:43 +00:00
Ruslan Ermilov
cc6638bd55 mdoc(7) police: spelling. 2002-08-09 12:08:47 +00:00
Andrey A. Chernov
cc1b8dcb1c Add additional field 'overwrite' to login_vars. It mainly needed to handle 
"term" according to manpage, i.e. not overwrite it, if already present in
environment.
 2002-06-28 14:45:30 +00:00
Maxim Sobolev
07a1fb30e3 Backout previous delta (addition of -I${.CURDIR}/../../sys). 
Submitted by:	bde
 2002-06-26 13:25:23 +00:00
Maxim Sobolev
af244dd67c Add -I${.CURDIR}/../../sys into CFLAGS, which should fix the world broken 
by RLIMIT_VMEM addition.
 2002-06-26 10:33:10 +00:00
Matthew Dillon
b5c7be5728 Add documentation for vmemoryuse 2002-06-26 03:58:31 +00:00
Matthew Dillon
67577126f9 Make libutil aware of vmemoryuse in its login.conf cap processing (aka 
sshd, /usr/bin/login, etc)
 2002-06-26 03:54:18 +00:00
Nick Hibma
074dccd545 Be more clear in error messages. 
Distinguish between a held lock and a failed lock op.

If rpc.lockd is not running on a diskless client this makes clearer
what the problem is.
 2002-06-23 19:23:46 +00:00
Hajimu UMEMOTO
82684fa6da Return HOSTNAME_INVALIDADDR when reverse lookup is fail. 
Submitted by:	Sergey Zorin <sergey@cc.tpu.edu.ru>
 2002-06-07 17:25:19 +00:00
Garrett Wollman
5685a7738f Add used include of <string.h>. 2002-05-30 19:38:07 +00:00
Dag-Erling Smørgrav
95ed2ab27f If no old_pw was passed to pw_copy, compare just the name. 
Sponsored by:	DARPA, NAI Labs
 2002-05-08 14:52:32 +00:00
Dag-Erling Smørgrav
e2ef54de51 Add passwd manipulation code based on parts of vipw and chpass. 
Sponsored by:	DARPA, NAI Labs
 2002-05-08 00:50:07 +00:00
Dag-Erling Smørgrav
c720dea0f2 login(3) doesn't care about the controlling terminal any more. 2002-04-20 12:24:20 +00:00
Dag-Erling Smørgrav
324e8fd88f Fix for the sshd(8) utmp problem. Previously, login(3) would ignore the tty 
named by its argument and use ttyslot(3) instead to determine what slot to
use.  The problem is that sshd(8) calls pam_open_session(3) before forking
the child (as it should), at which point it does not have a controlling
terminal.  Also, ttyslot(3) is very crude as it assumes fd 0, 1 or 2 refers
to the controlling terminal, which is usually (but not always) the case.

Instead of using ttyslot(3) to determine the slot number, look up the
specified tty in /etc/ttys ourselves (this is what ttyslot(3) does anyway).

(perforce change 9969)

Sponsored by:	DARPA, NAI Labs
 2002-04-20 12:23:04 +00:00
Dag-Erling Smørgrav
f9eaa746eb Make mppath and masterpasswd pointers instead of arrays, and initialize 
them to point at static strings that contain the default paths.  This
makes 'vipw -d' work again (I broke it in rev 1.21; apologies for taking
so long to fix it.)

Spotted by:	Olivier Houchard <doginou@cognet.ci0.org>
Sponsored by:	DARPA, NAI Labs
 2002-04-17 00:18:15 +00:00
Ceri Davies
8133673540 Add a missing cross-ref. 
Approved by:	murray
MFC after:	1 week
 2002-04-16 10:15:51 +00:00
Dag-Erling Smørgrav
1c9fd646f6 Remove bogus reference to _use_yp. 2002-04-15 15:50:59 +00:00
Ruslan Ermilov
b00ba4ccbb Const poisoning. 2002-04-08 11:04:56 +00:00
David E. O'Brien
1372519b15 Remove multi-line __P() usage. 2002-03-22 09:22:15 +00:00
David E. O'Brien
69160b1eb7 Remove __P() usage. 2002-03-21 23:54:04 +00:00
David E. O'Brien
be04b6d190 Remove 'register' keyword. 2002-03-21 23:39:28 +00:00
Dag-Erling Smørgrav
40e0f7deed Remove a bogus cast. 2002-03-06 15:24:51 +00:00
Dima Dorfman
246b0f8487 Correct a typo. 
PR:		35273
Submitted by:	Nicola Vitale <nivit@libero.it>
 2002-03-03 01:13:47 +00:00
Bruce Evans
3798cf8a70 #include <time.h> for the definition of time functions instead of 
depending on namespace pollution 2 layers deep in <sys/stat.h>.

Sorted includes.
 2002-02-25 12:02:03 +00:00
Bruce Evans
163ae6707c #include <stddef.h> for the definition of NULL instead of depending on 
namespace pollution 2 layers deep in <sys/stat.h>.

Sorted includes.
 2002-02-25 01:25:30 +00:00
Dag-Erling Smørgrav
93deb2ae12 ANSIfy and constify. 
Sponsored by:	DARPA, NAI Labs
 2002-02-05 06:49:11 +00:00
Robert Watson
5acb7446b0 o Reflect repo-copy of extattr.[c3] from libutil to libc, moving 
extattr namespace routines to the libc/posix1e directory.  While
  the extattr calls are not strictly POSIX.1e, POSIX.1e wasn't
  strictly ever approved, so I think that's OK.

Obtained from:	TrustedBSD Project
 2001-11-16 05:09:45 +00:00
Robert Watson
9d58ead2eb o Document 'nocheckmail' login capability. 2001-11-16 04:39:43 +00:00
Robert Watson
22524ffbb2 Although the 'bool' type is referenced in the list of capabilities, it 
is not defined in the capability type list.  Provide a definition for
'bool', if a slightly less than elegant one.  Note that this definition
does not include the complete scope of available behavior defined
in cgetcap(3), and could probably be improved.
 2001-11-16 02:40:09 +00:00
Yaroslav Tykhiy
dc72bf81a8 Fix the phrase about "both files", which must be left 
from login(3). This page, logwtmp(3), speaks of only
one file -- wtmp(5).

MFC after:	1 week
 2001-10-11 11:02:50 +00:00
Ruslan Ermilov
32eef9aeb1 mdoc(7) police: Use the new .In macro for #include statements. 2001-10-01 16:09:29 +00:00
Matthew Dillon
8719c58fef Add __FBSDID()s to libutil 2001-09-30 22:35:07 +00:00
Andrey A. Chernov
e36b245ca8 1) Back out ~/.login_conf disable 
2) Pick only "me" class from ~/.login_conf as documented
 2001-09-25 11:07:26 +00:00
Robert Watson
35105a5f91 Disable per-user .login_conf support due to incorrect merging of local 
and globaly settings.  An alternative implementation will be developed.

Reported by:	Przemyslaw Frasunek <venglin@freebsd.lublin.pl>
 2001-09-16 16:48:40 +00:00
Robert Watson
8df8b73f3c o Add a comment noting that the early setting of privileges for the purpose 
of NFS home directory and root directory processing fails to include
  additional groups.  This doesn't impact the final credential, but does
  mean that users may be denied login even when additional groups might
  allow it.
 2001-09-15 16:12:56 +00:00
Ruslan Ermilov
8af1452cf8 Removed duplicate VCS ID tags, as per style(9). 2001-08-13 14:06:34 +00:00
Ruslan Ermilov
57e4378bf6 mdoc(7) police: protect trailing full stops of abbreviations 
with a trailing zero-width space: `e.g.\&'.
 2001-08-10 13:45:36 +00:00
Hajimu UMEMOTO
27daeab3ec Simplify IPv4 mapped IPv6 address handling. 
Reviewed by:	brian
MFC after:	5 days
 2001-07-23 21:42:22 +00:00
Assar Westerlund
27e79ba285 remove emalloc,ecalloc,erealloc,estrdup 2001-07-23 12:42:07 +00:00