Commit Graph

589 Commits

Author SHA1 Message Date
obrien
7db41f31dc Add passwd(5) to "SEE ALSO".
ISSUES:
        An example and better explansion on how to specify a user's login
	class in /etc/master passwd is needed.
	(As I don't seem to be specifiying it right, I can't do it).
1997-10-07 05:40:36 +00:00
jkh
418d0a6a92 Changes to support full make parallelism (-j<n>) in the world
target.
Reviewed by:	<many different folks>
Submitted by:	Nickolay N. Dudorov" <nnd@nnd.itfs.nsk.su>
1997-10-05 09:40:24 +00:00
wosch
8ee659dd96 Sort cross refereces in section SEE ALSO. 1997-09-29 19:11:55 +00:00
wosch
e4b768f0ee Endless loop.
$ vipw
[corrupt a line in editor, exit editor]
pwd_mkdb: corrupted entry
pwd_mkdb: at line #2
pwd_mkdb:
/etc/pw.012585: Inappropriate file type or format
re-edit the password file? [y]: n^D^D
[hang]
1997-09-29 13:13:51 +00:00
pst
930fa4a438 The parameters to logwtmp should be const char's 1997-09-04 22:38:59 +00:00
brian
952d2b05cd Remove login_progok()
Suggested by: guido
1997-08-31 20:09:39 +00:00
brian
6c9afb5a31 Add full support for determining if a user
is restricted from running a given program.
1997-08-27 20:06:20 +00:00
brian
b7ac9705e1 Add prog.deny as a list capability for
denying execution of certain programs.
1997-08-26 23:15:57 +00:00
bde
fb2ef58cd8 -I${DESTDIR}/sys -> -I${.CURDIR}/../../sys. 1997-08-26 14:13:02 +00:00
joerg
e309caa011 Cosmetic: distinguish in diag message between rebuilding and updating
the database.

PR:		3397
Submitted by:	taob@risc.org (Brian Tao)
1997-08-24 18:23:21 +00:00
steve
4102fc6259 Protect the copyright comments from reformatting by
indent and make this compile -Wall clean like the
Makefile suggests that it should. :)

Pointed out by:	Bruce Evans <bde@zeta.org.au>
1997-08-13 20:42:18 +00:00
ache
cda69874ef Implement canonical locking protocol
Suggested by: joerg
1997-08-10 18:42:39 +00:00
steve
34c71a268a Observe precedence set by Phillippe Charnier in adding an
rcsid.
1997-08-07 22:28:25 +00:00
steve
2eae399bf6 Remove #if(n)def BSD_4_4_LITE cruft and sccsid -> rcsid. 1997-08-07 15:33:50 +00:00
ache
ee162dd22f Improve weak locking by using flock() 1997-08-05 12:58:02 +00:00
davidn
84c0a5dcfe sleep() after sending 'nologin' file to ensure output is drained before
disconnect.
1997-07-19 04:47:05 +00:00
asami
488863f1ec Add appropriate ${DESTDIR} in front of absolute paths. 1997-07-18 07:27:56 +00:00
davidn
4c6c70e5ae Fix infinite loop.
PR: 3878
Submitted by: roman@rpd.univ.kiev.ua
1997-06-16 23:38:01 +00:00
davidn
33ffdfd368 Add "break" inadvertently removed in previous update.
PR: 3820
Submitted by: Joseph Stein <joes@spiritone.com>
1997-06-13 22:26:41 +00:00
julian
68081e32bc Submitted by: Whistle Communications (archie Cobbs)
These changes add the ability to specify that a UFS file/directory
cannot be unlinked. This is basically a scaled back version
of the IMMUTABLE flag. The reason is to allow an administrator
to create a directory hierarchy that a group of users
can arbitrarily add/delete files from, but that the hierarchy
itself is safe from removal by them.
If the NOUNLINK definition is set to 0
then this results in no change to what happens normally.
(and results in identical binary (in the kernel)).
It can be proven that if this bit is never set by the admin,
no new behaviour is introduced..
Several "good idea" comments from reviewers plus one grumble
about creeping featurism.

This code is in production in 2.2 based systems
1997-06-02 06:24:52 +00:00
tg
0d09d4481f Typo police. 1997-05-22 07:02:01 +00:00
peter
f798c2037e Now I really understand the reason for the style.9 rule about not having
visible type names in prototypes in user space headers.  libutil.h
generates warnings with -Wall over the use of "const char *ttyname".
It's lucky it wasn't a #define conflict.
Is a single '_' prefix acceptable? or does it need to be two?
1997-05-19 10:04:15 +00:00
davidn
958b435ec8 MF2.2: update login_cap api docs.
PR:
Reviewed by:
Submitted by:
Obtained from:
1997-05-18 09:14:11 +00:00
davidn
3ca7419589 For non-root uids, consider root-owned files also 'secure' unless otherwise
disqualified.
1997-05-15 06:06:32 +00:00
asami
e51b817ee5 Back out previous revision. Shlib version numbers are supposed to be
bumped only 0.1 or 1.0 between releases.  (See handbook.)

Note that if you have built world in -current in the last 48 hours or
so, you should manually remove /usr/lib/libutil.so.2.3 before
rebuilding world to cleanse your system.
1997-05-13 08:51:49 +00:00
brian
4c39a55c1e Make uu_* const correct.
Suggested by:	joerg
1997-05-12 10:36:14 +00:00
davidn
c6a818ef15 Add #include <sys/types.h> in synopsis, now required for libutil.h. 1997-05-11 08:50:33 +00:00
davidn
5849ee9e9f Bump shared lib version to 2.3.
Suggested by: bde
1997-05-11 08:31:43 +00:00
davidn
bb3bc8e44e MF2.2: bugfix in arrayize(). 1997-05-11 08:07:29 +00:00
davidn
1ad6ccc98a Summary of login.conf support changes:
o Incorporated BSDI code and enhancements, better logging for error
  checking (which has been shown to be a problem, and is therefore
  justified, imho); also some minor things we were missing, including
  better quad_t math, which checks for under/overflows.

o setusercontext() now allows user resource limit overrides, but
  does this AFTER dropping root privs, to restrict the user to
  droping hard limits and set soft limits within the kernel's
  allowed user limits.

o umask() only set once, and only if requested.

o add _secure_path(), and use in login.conf to guard against
  symlinks etc. and non-root owned or non-user owned files being
  used. Derived from BSDI contributed code.

o revamped authentication code to BSDI's latest api, which
  includes deleting authenticate() and adding auth_check()
  and a few other functions. This is still marked as depecated
  in BSDI, but is included for completeness. No other source
  in the tree uses this anyway, so it is now bracketed with
  #ifdef LOGIN_CAP_AUTH which is by default not defined. Only
  auth_checknologin() and auth_cat() are actually used in
  module login_auth.c.

o AUTH_NONE definition removed (collided with other includes
  in the tree). [bde]

o BSDI's login_getclass() now accepts a char *classname
  parameter rather than struct passwd *pwd. We now do likewise,
  but added login_getpwclass() for (sort of) backwards
  compatiblity, namely because we handle root as a special
  case for the default class. This will require quite a few
  changes elsewhere in the source tree.

o We no longer pretend to support rlim_t as a long type.

o Revised code formatting to be more bsd-ish style.
1997-05-10 18:55:38 +00:00
davidn
c8cff27162 Move login_cap.h from src/include for easier maintenance with
related files.
1997-05-10 12:49:30 +00:00
danny
57446d1d1a Fix punctuation: "it's" -> "its" 1997-04-17 23:31:47 +00:00
bde
f98bb54e1a Fixed missing const in synopsis. 1997-04-13 14:12:48 +00:00
mpp
b4e758bf65 Grammar police. 1997-04-02 05:52:22 +00:00
ache
92e0ce403a Add Id
Reduce space for error bufer from 512 to 128: there is no such long strings
can be returned from strerror()
1997-04-02 04:24:39 +00:00
ache
d3ec62f2fd Code space optimization in uu_lockerr() 1997-04-02 03:53:49 +00:00
ache
3c64721fa7 Remove unused USE_PERROR define and syslog.h include
Use snprintf instead of sprintf to avoid buffer overflows
Use snprintf in uu_lockerr instead of lots of hardcoded constants
and not null-terminated strncpy
Return "" for OK and "device in use" for INUSE, it allows simple
strcpy(buf, uu_lockerr(retcode)) without testing for special OK
case (NULL was there) and obtaining meaningful result for INUSE
("" was there) without special testing for it too.
1997-04-02 03:38:29 +00:00
mpp
00374de535 MLINK uu_lockerr(3). 1997-04-01 17:44:58 +00:00
mpp
6fb13de4c3 Mdoc police. 1997-04-01 17:44:31 +00:00
brian
cb7f5ad555 Remove the syslog stuff, and allow various return values
in uu_lock().  Add uu_lockerr() for turning the results of
uu_lock into something printable.  Remove bogus section in man page
about race conditions allowing both processes to get the lock.
Include libutil.h and use uu_lock() correctly  where it should.

Suggested by:	ache@freebsd.org
1997-03-31 22:51:00 +00:00
brian
10839f0219 Move uucplock into libutil and create a manual page. 1997-03-30 12:12:20 +00:00
bde
f4ededc590 Fixed misquoted arg in synopsis. 1997-03-19 02:01:27 +00:00
ache
4815b9da37 "infinity" check was missed from login_getcapsize(), add it
One manifestation of this bug: all networking users have coredumpsize=0
1997-02-27 00:24:05 +00:00
peter
6b08958c64 Revert $FreeBSD$ to $Id$ 1997-02-22 15:12:41 +00:00
peter
83b3c2c161 Revert $FreeBSD$ to $Id$ 1997-02-22 14:13:04 +00:00
davidn
e10e1c88f1 Obsolete fgetline() -> fgetln(); and chop off newline if necessary. 1997-02-10 16:32:03 +00:00
asami
a8f323140e 1MB is 1048576 bytes, not 1038476 bytes. (I can see that the original
committer wasn't using the MicroSlop Natural keyboard though! :)
1997-02-05 06:06:15 +00:00
davidn
25969ba119 Fix free()ing block twice, remove unused function. 1997-01-30 03:37:13 +00:00
davidn
c8262fe8b1 Fix typo .->, for default separators in login_getcaplist(). 1997-01-29 06:50:00 +00:00
davidn
79f712147e Completed fixes with login_getcapsize(). 1997-01-29 06:31:42 +00:00
davidn
960d5c29b4 Added -Wall to CFLAGS, cleaned up (all avoidable) warnings. 1997-01-29 06:11:31 +00:00
davidn
9b241a5043 1) Fixed bug in free()ing internal string/array where
allocated size not reset to 0 causing NULL dereference
	on call after login_close().
2)	Modify login_capsize() behaviour to match manpage, allow
	concatenated sizes; ie. 10m500k
1997-01-29 06:06:32 +00:00
davidn
7069b2a506 #include <sys/stat.h> for umask() prototype. 1997-01-29 06:02:49 +00:00
wosch
6d0dbd7455 Sort cross references. 1997-01-20 23:23:22 +00:00
jkh
808a36ef65 Make the long-awaited change from $Id$ to $FreeBSD$
This will make a number of things easier in the future, as well as (finally!)
avoiding the Id-smashing problem which has plagued developers for so long.

Boy, I'm glad we're not using sup anymore.  This update would have been
insane otherwise.
1997-01-14 07:20:47 +00:00
peter
e75dcc97e2 Bump libutil.so version (2.1 -> 2.2) since a whole heap of new functions
were added with the login class stuff.  This is needed since libutil.so.2.1
is what is used in RELENG_2_2 and well into the release cycle.  We only
bump once per release cycle as needed.
1997-01-13 03:05:04 +00:00
mpp
ba7ed41388 Minor mdoc style fixes. 1997-01-09 07:12:09 +00:00
mpp
13525f3326 Man page police. 1997-01-08 06:51:32 +00:00
davidn
4dfbc233a2 Various bugfixes. 1997-01-07 16:28:12 +00:00
davidn
5260ae0792 Consistency check: refs to ~/.login.conf should be ~/.login_conf. 1997-01-07 14:29:50 +00:00
davidn
08c587d89f Commit the right version this time. :-) 1997-01-07 13:32:04 +00:00
davidn
962c4b892b Fix for login_getclass(NULL) case. 1997-01-07 13:29:21 +00:00
davidn
972eeb5510 Fix typos pointed out by bde (thanks!). 1997-01-05 09:06:32 +00:00
bde
cb09dd3d33 Don't depend only <stdio.h> bogusly including <sys/types.h>.
(<sys/types.h> is a prerequisite for <login_cap.h> mainly because
the latter wants to typedef rlim_t.  rlim_t is typedefed in
<sys/types.h> in NetBSD.)
1997-01-05 07:12:29 +00:00
davidn
f9d8d4f0d7 Add missing manpage for login.conf. 1997-01-05 03:24:45 +00:00
davidn
592532aadc Library functions relating to the login class capabilities database,
including manpages.
See also login_cap.h.
1997-01-04 16:50:08 +00:00
alex
04b4af7e37 Grammatical changes.
Reviewed by:	joerg
1997-01-01 03:29:33 +00:00
mpp
b42b04fa85 Spelling/mdoc police. 1996-12-30 21:08:45 +00:00
joerg
2cf073cc92 Finally document the interfaces found in libutil. While being here,
also add the missing declaration of forkpty() to libutil.h.

Btw., the calling interface for login(3) is crude.  Some better
abstraction is needed, perhaps similar to logwtmp(3).

2.2 candidate, but i'll wait for the spelling police first. :)
1996-12-29 18:30:42 +00:00
steve
69ca26a305 Merge Lite2 mods, and -Wall cleaning. undelete(2) cruft
not yet implemented is protected by a define (BSD4_4_LITE)
that should be removed when this call is supported by the
kernel.
1996-12-14 06:03:29 +00:00
mpp
05d0602202 Some minor man page cleanup. 1996-08-23 20:52:53 +00:00
jkh
c4d4a99d31 General -Wall warning cleanup, part I.
Submitted-By: Kent Vander Velden <graphix@iastate.edu>
1996-07-12 18:57:58 +00:00
guido
70bae2bee1 Implement incremental passwd database updates. This is done by ading a '-u'
option to pwd_mkdb and adding this option to utilities invoking it.
Further, the filling of both the secure and insecure databases has been
merged into one loop giving also a performance improvemnet.
Note that I did *not* change the adduser command. I don't read perl
(it is a write only language anyway).
The change will drastically improve performance for passwd and
friends with large passwd files. Vipw's performance won't change.
In order to do that some kind of diff should be made between the
old and new master.passwd and depending the amount of changes, an
incremental or complete update of the databases should be agreed
upon.
1996-07-01 19:38:50 +00:00
ache
aba2bff439 If hostname > UT_HOSTSIZE, use its numeric address instead to keep
valid entries into utmp and wtmp
1996-06-17 14:49:02 +00:00
peter
4223430ef2 If the two recently added sysctl variables exist, use those rather than
the statically compiled PS_STRINGS and USRSTACK variables.  This prevents
programs using setproctitle from coredumping if the kernel VM is increased,
and stops libkvm users (w, ps, etc) from needing to be recompiled if only
the VM layout changes.
1996-02-24 14:37:30 +00:00
mpp
0629c08669 Another round of spelling fixes. 1996-01-30 18:13:11 +00:00
peter
42bbbd2861 Bump libutil revision after recent addition of setproctitle().
Install (optional) libutil.h with prototypes for the functions and
document this in the man page.

minor cleanups to the various routines, include the prototype file, declare
return codes etc.
1996-01-01 08:27:41 +00:00
peter
735f647729 Bring in an initial version of setproctitle().. This is intended to
replace the dozen other various hacks in the code that do all sorts
of crude things including spamming the envrionment strings with the new
argv string.

This version is mainly inspired by the sendmail version, with a couple of
ideas taken from the NetBSD implementation as well.
1995-12-26 22:50:08 +00:00
bde
1c4474b3dd Update to 4.4lite2 (clean up includes; initialize the name of the master
pty correctly (it was broken for calls to openpty() after the first
successful one)).
Obtained from:	4.4lite2
1995-10-22 19:11:12 +00:00
wpaul
0d181a55dc Small NIS tweak: frob pw_error() a little so that it can say either
'NIS information unchanged' or '/etc/master.passwd unchanged'
depending on which was is being modified (conditional on -DYP).

This is to save me the trouble of writing a whole other error
routine (nis_error()?) for the upcoming changes to passwd and
chpass.
1995-08-13 16:05:06 +00:00
rgrimes
f05428e4cd Remove trailing whitespace. 1995-05-30 05:51:47 +00:00
rgrimes
4f960dd75f Remove trailing whitespace. 1995-05-30 03:57:47 +00:00
ache
644d3b582f Fix suspended vipw hangs
Obtained from: NetBSD
1995-03-09 21:53:12 +00:00
jkh
87505148a9 Support for >32 PTYs.
Submitted by:	Heikki Suonsivu <hsu@cs.hut.fi>
1995-02-09 11:11:01 +00:00
dg
8722740e7f Added $Id$ 1994-09-24 02:59:15 +00:00
rgrimes
e043687c62 This commit was generated by cvs2svn to compensate for changes in r1573,
which included commits to RCS files with non-trunk default branches.
1994-05-27 05:00:24 +00:00
rgrimes
be22b15ae2 BSD 4.4 Lite Lib Sources 1994-05-27 05:00:24 +00:00
rgrimes
c5df1ac6c7 BSD 4.4 Lite bin Sources 1994-05-26 06:18:55 +00:00
rgrimes
5d98a33b2f BSD 4.4 Lite usr.sbin Sources 1994-05-26 05:23:31 +00:00