MFC: archive_write_set_format_cpio_newc.c 1.2
Non-regular files should have zero-length bodies. libarchive
flags this to clients by updating the entry description when
it writes the header.
return an empty block first. In particular, this fixes a bogus
warning from bsdtar when restoring directories from ZIP archives.
Also, correct the return values at EOF to include the correct
offset.
ensure the head entry of addrinfo chain has non-NULL ai_canonname to be
compliant with RFC3493.
PR: standards/114910
Approved by: ume (mentor)
lib/libc/net/getaddrinfo.c: 1.86
Set timeout for all NIS RPC requests to 1 second and not just for
yp_next as revision 1.50 did. This should fix, or at least very much
reduce the risk of, NIS timing out due to UDP packet loss for NIS
functions.
See also revision 1.50 for more details about the general problem.
pam_nologin(8) starts to provide an account management function in
addition to the existing authentication function so that sshd(8) can
respect nologin(5) while the rest of PAM consumers work as earlier.
In turn, sshd(8) starts to use the new account management function
in pam_nologin(8) and thus respect nologin(5) even when doing public
key authentication with sshd's internal routines (PAM authentication
isn't called at all in that case).
Based on:
1.12 +2 -10 src/lib/libpam/modules/pam_nologin/pam_nologin.c
1.6 +10 -11 src/lib/libpam/modules/pam_nologin/pam_nologin.8
1.16 +1 -1 src/etc/pam.d/sshd
Approved by: des
PR: bin/112574
Use the current user's login class for the decisions about where
the nologin(5) file is located and whether the user may bypass its
restriction.
Add some error checks.
Revision Changes Path
1.7 +16 -15 src/lib/libpam/modules/pam_nologin/pam_nologin.8
1.13 +42 -29 src/lib/libpam/modules/pam_nologin/pam_nologin.c
Note: To avoid POLA violation, the merged module still lets root
in irrespective of login.conf settings. In HEAD, root has to have
an explicit "ignorenologin" capability to bypass nologin(5).
PR: bin/107612
- Finally document the LOGIN_MECLASS hack in the manpage and comments.
- Fix login_getcaplist() prototype in the manpage.
- Improve the manpage markup.
With this change, libarchive source in -CURRENT and 6-STABLE
is exactly identical. The only difference is the
version number (1.9 for 6-STABLE, 2.2 for -CURRENT) and
SHLIB_MAJOR (2 in 6-STABLE, 4 in -CURRENT). The
source has conditionals to compile the old libarchive 1
API/ABI or the newer libarchive 2 API/ABI depending on
the version number set at compile time.
This is identical to libarchive 2.2.3 from -CURRENT, with
all of the performance improvements, bug fixes, and new
formats, except that:
* archive_read_finish() and archive_write_finish() don't return errors
* archive_write_data() has a different return type
* user-provided skip callbacks have a slightly different signature
These differences maintain ABI compatibility with libarchive 1.3.1
(hence the "1" in "1.9") and allows libarchive 1.9 to have the
same SHLIB_MAJOR and otherwise serve as a straight replacement
for libarchive 1.3.1 (only better).
Thanks to: Many, many people who contributed error reports, bug fixes,
and suggestions over the last three years. ;-)
