d/freebsd-skq
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
69,312 Commits 4 Branches 49 Tags 2 GiB
14be282b68
Commit Graph

5616 Commits

Author SHA1 Message Date
des
14be282b68 Add a new module, pam_opieaccess(8), which is responsible for checking 
/etc/opieaccess and ~/.opiealways so we can decide what to do after
pam_opie(8) fails.

Sponsored by:	DARPA, NAI Labs
Reviewed by:	ache, markm
 2002-01-21 13:43:53 +00:00
ache
b7343f3a64 snprintf bloat -> strlcpy 
Add getpwnam return check

Approved by:	des, markm
 2002-01-20 20:56:47 +00:00
des
69f2f16cb4 Check the return value from read() when reading the CR/LF at the end of a 
chunk.

PR:		bin/33608
MFC after:	2 weeks
 2002-01-20 19:53:12 +00:00
des
9f6167dc5a Mark uploads as O_WRONLY, not O_RDONLY. 
PR:		misc/34043
MFC after:	2 weeks
 2002-01-20 19:52:25 +00:00
yar
1c60c1c170 Minor typo fix: uquad_t -> u_quad_t. 2002-01-20 16:50:29 +00:00
dillon
c3dbbbabdf I've been meaning to do this for a while. Add an underscore to the 
time_to_xxx() and xxx_to_time() functions.  e.g. _time_to_xxx()
instead of time_to_xxx(), to make it more obvious that these are
stopgap functions & placemarkers and not meant to create a defacto
standard.  They will eventually be replaced when a real standard
comes out of committee.
 2002-01-19 23:20:02 +00:00
ache
d90ac373d0 Back out recent changes 2002-01-19 18:03:11 +00:00
ache
f9d407de0b If user not exist in OPIE system, return failure immediately instead 
of producing fake prompts with random numbers which can be detected by
potential intruder in two tries and totally confuse non-OPIE users.
 2002-01-19 10:09:05 +00:00
ache
0262fc4b8f Back out second right-now-expired password check in pam_sm_chauthtok, 
old expired password assumed there
 2002-01-19 09:23:36 +00:00
ache
b0127287cc Previous commit was incomplete, use new error code PAM_CRED_ERR to 
indicate die case, different from PAM_SUCCESS and PAM_AUTH_ERR
 2002-01-19 08:36:47 +00:00
ache
4d1c54018e Rewrite 'pwok' fallback in the way it can be properly chained with pam_unix 
Replace snprintf %s with strlcpy

Check for NULL returned from getpwnam()
 2002-01-19 07:23:48 +00:00
ache
35ada60969 Add yet one expired-right-now password check, in pam_sm_chauthtok 
srandomdev() can't be used in libraries, replace srandomdev()+random()
by arc4random()
 2002-01-19 04:58:51 +00:00
ache
30b45f48f0 Set pwok to 1 for non-OPIE users 2002-01-19 03:31:39 +00:00
ache
a38e044747 Add missing check for right-now-expired password 2002-01-19 02:45:24 +00:00
ache
3d4ab3ebc5 Implement 'pwok', i.e. conditional fallback to unix password 
as supposed by opieaccessfile() and opiealways()
 2002-01-19 02:38:43 +00:00
ru
127a9d6012 mdoc(7) police: tidy up OpenBSD fixes. 2002-01-16 15:21:39 +00:00
mike
1ba2eb7fe9 Add a few cleanups from rev 1.1: 
o Restore vendor ID.
o Order variable types by size.
o Remove a gratuitous temporary variable.

Submitted by:	bde
 2002-01-15 17:52:21 +00:00
mike
beadda288c o Add prototype for printf(3). 
style(9):
o Order variables in declarations.
o Move initialization out of declaration.
o Fix over-indents in previous delta.
 2002-01-15 08:50:28 +00:00
mike
b87cdc2c64 style(9) 
Submitted by:	Joseph Mallett <jmallett@xmach.org>
Reviewed by:	md5(1)
 2002-01-15 08:26:58 +00:00
ru
7aa3bf6364 yp(4) -> yp(8). 
PR:		docs/30797
 2002-01-14 16:59:03 +00:00
cjc
840adbd42c Merge some updates and markup fixes from OpenBSD. This is mainly 
motivated by the new "CAVEATS" section.

Inspired by:	alfred noting NetBSD's merging OpenBSD's changes
Obtained from:	OpenBSD
 2002-01-14 02:08:02 +00:00
dwhite
0b02189319 Add xref for timeradd(3). 
PR:		13079
 2002-01-14 00:38:41 +00:00
jake
3f719eddda Comment out the retrieval of a termination function from %g1. It is 
doubtful this will ever be used by anything and rtld uses %g1.
Comment out references to _init and _fini for now too.
 2002-01-13 06:17:19 +00:00
deischen
732c36b4f3 Include <stddef.h> to fix build problem when namespace pollution 
by <signal.h> (including <time.h> so that NULL is accidentally defined)
is removed.

Style nits.

Submitted by:	bde
 2002-01-11 19:46:08 +00:00
bde
dc0928a2d4 Fixed unsorting and splitting of SRCS in previous commit. 2002-01-11 17:10:35 +00:00
bde
6c6aee2cdc Fixed missing backslash in previous commit. 2002-01-11 16:08:49 +00:00
bde
db24453e8e Fixed accumulated unsorting and some other style bugs (long lines). 2002-01-11 15:59:30 +00:00
bde
b57a6501b2 Replaced bogus cross references by the usual one for the ctype family 
(ctype(3)).
 2002-01-11 15:39:50 +00:00
bde
20c0be082c Removed assertion that isblank() conforms to C90 too. This assertion 
is correct but less than useful.  There is some uncertainty about whether
isblank() is in C99, but it is certainly not in C90.  It just conforms
to C89 because it is a conforming extension.
 2002-01-11 15:21:03 +00:00
bde
7ae245ff23 Fixed unsorting of almost all lists in previous commit. 
Removed assertion that isblank() is in C99 here too.
 2002-01-11 15:15:17 +00:00
bde
1aba435a49 Fixed unsorting of MLINKS in previous commit. 
Fixed unsorting of SRCS in rev.1.18.
 2002-01-11 14:57:11 +00:00
nik
c16e18ce7c Remove assertion that isblank() is in C99, pointed out by ache. 2002-01-10 12:22:00 +00:00
deischen
e1f74be694 Add getcontext, setcontext, makecontext, and swapcontext. These 
functions are defined in SUSv2 and the latest POSIX spec.

Thanks to Bernd Walter <ticso@cicely8.cicely.de> for helping debug my
alpha assembly.

Approved by:	-arch
 2002-01-10 02:40:59 +00:00
sheldonh
28458ea28c Document behaviour with respect to interval timers. 
PR:		33156
Submitted by:	Peter Jeremy <peter.jeremy@alcatel.com.au>
 2002-01-09 14:44:06 +00:00
ru
89069aaa17 mdoc(7) police: add missing markup bits for ``errno''. 2002-01-09 14:03:54 +00:00
ru
fa7886b781 mdoc(7) police: 
Stop abusing the .%J macro for where the .Pa macro should have been used.
 2002-01-09 14:01:22 +00:00
nik
eea8272b9c From the PR: 
1. ctype.h defines digittoint(), isnumber() and ishexnmber(), yet
        they are not documented in any of the manpages.

        2. The ctype manpage references a non-existent manpage for
        digittoint().

        3. The isascii() manpage claims it is standards compliant, when
        it isn't.

        4. isblank() claims it is _not_ standards compliant, when it
        is.

Fix by including the appropriate .Nm entries, and with a new digittoint.3
page.

PR:		docs/26451
Submitted by:	Adrian Filipi-Martin <adrian@ubergeeks.com>
 2002-01-09 13:43:31 +00:00
jhb
6e3fd09860 Fix some 32/64-bit bugs. IPv4 addresses are 32-bits, not longs. On the 
alpha these bugs didn't cause any problems because it was little endian,
but on sparc64, we ended up with garbage for the IP address when we tried
to contact the server.  (Usually 3.253.0.0)

Not objected to by:	wpaul
 2002-01-08 18:05:03 +00:00
jedgar
9b7f0a9f53 Correct phrase 'get an ACL' to 'set an ACL'. 
PR:		33660
Submitted by:	Rich Morin <rdm@cfcl.com>, Tom Rhodes <darklogik@pittgoth.com>
 2002-01-07 22:46:14 +00:00
dillon
2a7ecd5129 Modify Delete_Chunk() into Delete_Chunk2() which can take a flags 
argument.  Leave a compatibility shim for Delete_Chunk().

Implement DELCHUNK_RECOVER flag so sysinstall can ask libdisk
to recover space when deleting a chunk.
 2002-01-07 07:47:25 +00:00
dd
2d24941f20 We are munmap(2), so there's no need to list ourselves in the SEE ALSO 
section; instead, list our partner in crime, mmap(2).

PR:		33153
Submitted by:	Faried Nawaz <fn@hungry.org>
 2002-01-07 06:12:25 +00:00
dd
f726f84460 Nuke the paragraph that says "One can obtain user connection request 
data without confirming the connection by issuing a recvmsg(2) [...]".
There's no such code in the kernel.

PR:		26861
Submitted by:	Richard A Steenbergen <ras@e-gerbil.net>,
		Tom Rhodes <darklogik@pittgoth.com>
 2002-01-07 06:10:37 +00:00
dd
8cf69c2918 Suggest using memmove(3) if src and dst may overlap. 
PR:		33298
Submitted by:	Tim J. Robbins <tim@robbins.dropbear.id.au>
 2002-01-07 06:03:37 +00:00
chris
55675dea84 All information from the "BUGS" section not belonging in "SECURITY 
CONSIDERATIONS" moved to "COMPATIBILITY".

Obtained from:	TrustedBSD Project
Sponsored by:	DARPA, NAI Labs
 2002-01-06 21:48:37 +00:00
chris
37a6f9b2be Add new "SECURITY CONSIDERATIONS" sections. 
Obtained from:	TrustedBSD Project
Sponsored by:	DARPA, NAI Labs
 2002-01-06 21:16:41 +00:00
kbyanc
2c8c8c3eed Enable WARNS?=2. 2002-01-06 08:47:19 +00:00
chris
49c162fb20 Add a new `SECURITY CONSIDERATIONS' section. Sample code similar to 
the first revision of strcpy(3)'s section is included, but should be
removed as the Security Architecture document is committed and
completed.

Obtained from:	TrustedBSD Project
Sponsored by:	DARPA, NAI Labs
 2002-01-05 20:44:34 +00:00
chris
fe1ce55be7 Include a section cross-reference to EXAMPLES' in SECURITY 
CONSIDERATIONS' as a source for relevant sample code.

Obtained from:	TrustedBSD Project
Sponsored by:	DARPA, NAI Labs
 2002-01-05 20:36:47 +00:00
chris
b2713a0da3 Remove the example from SECURITY CONSIDERATIONS. This is mostly 
duplicated code from EXAMPLES.

Obtained from:	TrustedBSD Project
Sponsored by:	DARPA, NAI Labs
 2002-01-05 20:24:38 +00:00
yar
81b5911741 Minor grammar and punctuation fixes 
in the SO_ACCEPTFILTER description.
 2002-01-04 18:17:07 +00:00