d/freebsd-skq
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
85,225 Commits 4 Branches 49 Tags 2 GiB
c60183cc58
Commit Graph

298 Commits

Author SHA1 Message Date
ache
c60183cc58 Add (unsigned char) cast to ctype macros 
Handle NULL return from malloc and strdup
 2003-01-19 03:05:01 +00:00
schweikh
86f7487fb6 Fix typos, mostly s/ an / a / where appropriate and a few s/an/and/ 
Add FreeBSD Id tag where missing.
 2002-12-30 21:18:15 +00:00
schweikh
fec6546e12 english(4) police. 2002-12-27 12:15:40 +00:00
chris
a52def4e3f Document the `label' capability. 
Approved by:	re
Sponsored by:	DARPA, Network Associates Labs
Obtained from:	TrustedBSD Project
 2002-11-22 22:22:10 +00:00
peter
570525a6c7 Oops. Some ut_time stuff slipped through the cracks. These turned out 
to be non-fatal due to stack alignment roundups.
 2002-11-17 23:46:45 +00:00
rwatson
b942ef4ae6 Add LOGIN_SETMAC to the list of flags that can't be set without class 
information, since we rely on the pwd entry to know what MAC labels
to set as part of the login process.

Obtained from:	TrustedBSD Project
Sponsored by:	DARPA, Network Associates Laboratories
 2002-11-12 22:30:01 +00:00
sheldonh
9dcd1c6c1d Use "deprecated" instead of "depreciated" where appropriate. 2002-10-30 07:49:11 +00:00
des
e0746634a5 Don't forget to '\n'-terminate new entries. This unbreaks chpass -a. 
Submitted by:	joerg
 2002-10-29 13:58:42 +00:00
rwatson
7b9f8f277b If LOGIN_SETMAC is set and MAC is enabled in the kernel, then see 
if the user has a 'label' entry in their login class.  If so, attempt
to set that label on the process as part of the credential setup.  If
we're unable to parse the label, or unable to set the label, fail.
In the future, we may also want to warn if a label is set but the
kernel doesn't support MAC.

Approved by:	re
Obtained from:	TrustedBSD Project
Sponsored by:	DARPA, Network Associates Laboratories
 2002-10-23 03:17:22 +00:00
peter
0a7f0ba37e Zap now-unused SHLIB_MINOR 2002-09-28 00:25:32 +00:00
charnier
4966efff7b Replace various spelling with FALLTHROUGH which is lint()able 2002-08-25 13:10:45 +00:00
rwatson
672aa78ecb Add LOGIN_SETMAC, which will indicate to the user context management code 
that it should also set the user's default MAC label, if available and
permitted.

Obtained from:	TrustedBSD Project
Sponsored by:	DARPA, NAI Labs
 2002-08-16 02:14:21 +00:00
rwatson
c455dcde64 Whitespace cleanup--it's not style(9), but it is consistent. Prep 
for MAC-related commits to the login infrastructure.

Obtained from:	TrustedBSD Project
Sponsored by:	DARPA, NAI Labs
 2002-08-11 01:48:43 +00:00
ru
dd72b72c9a mdoc(7) police: spelling. 2002-08-09 12:08:47 +00:00
ache
47681d4a8a Add additional field 'overwrite' to login_vars. It mainly needed to handle 
"term" according to manpage, i.e. not overwrite it, if already present in
environment.
 2002-06-28 14:45:30 +00:00
sobomax
43c345ecb4 Backout previous delta (addition of -I${.CURDIR}/../../sys). 
Submitted by:	bde
 2002-06-26 13:25:23 +00:00
sobomax
d2858dfb8c Add -I${.CURDIR}/../../sys into CFLAGS, which should fix the world broken 
by RLIMIT_VMEM addition.
 2002-06-26 10:33:10 +00:00
dillon
f3f62e5297 Add documentation for vmemoryuse 2002-06-26 03:58:31 +00:00
dillon
90195bf296 Make libutil aware of vmemoryuse in its login.conf cap processing (aka 
sshd, /usr/bin/login, etc)
 2002-06-26 03:54:18 +00:00
n_hibma
e8868912eb Be more clear in error messages. 
Distinguish between a held lock and a failed lock op.

If rpc.lockd is not running on a diskless client this makes clearer
what the problem is.
 2002-06-23 19:23:46 +00:00
ume
41a722805a Return HOSTNAME_INVALIDADDR when reverse lookup is fail. 
Submitted by:	Sergey Zorin <sergey@cc.tpu.edu.ru>
 2002-06-07 17:25:19 +00:00
wollman
303c628e35 Add used include of <string.h>. 2002-05-30 19:38:07 +00:00
des
0e558b0a7a If no old_pw was passed to pw_copy, compare just the name. 
Sponsored by:	DARPA, NAI Labs
 2002-05-08 14:52:32 +00:00
des
ac9ea0e5ca Add passwd manipulation code based on parts of vipw and chpass. 
Sponsored by:	DARPA, NAI Labs
 2002-05-08 00:50:07 +00:00
des
c9db9bb418 login(3) doesn't care about the controlling terminal any more. 2002-04-20 12:24:20 +00:00
des
23c5e9b816 Fix for the sshd(8) utmp problem. Previously, login(3) would ignore the tty 
named by its argument and use ttyslot(3) instead to determine what slot to
use.  The problem is that sshd(8) calls pam_open_session(3) before forking
the child (as it should), at which point it does not have a controlling
terminal.  Also, ttyslot(3) is very crude as it assumes fd 0, 1 or 2 refers
to the controlling terminal, which is usually (but not always) the case.

Instead of using ttyslot(3) to determine the slot number, look up the
specified tty in /etc/ttys ourselves (this is what ttyslot(3) does anyway).

(perforce change 9969)

Sponsored by:	DARPA, NAI Labs
 2002-04-20 12:23:04 +00:00
des
e914cc2fa2 Make mppath and masterpasswd pointers instead of arrays, and initialize 
them to point at static strings that contain the default paths.  This
makes 'vipw -d' work again (I broke it in rev 1.21; apologies for taking
so long to fix it.)

Spotted by:	Olivier Houchard <doginou@cognet.ci0.org>
Sponsored by:	DARPA, NAI Labs
 2002-04-17 00:18:15 +00:00
ceri
36e818184d Add a missing cross-ref. 
Approved by:	murray
MFC after:	1 week
 2002-04-16 10:15:51 +00:00
des
929a8fb33d Remove bogus reference to _use_yp. 2002-04-15 15:50:59 +00:00
ru
07997437f0 Const poisoning. 2002-04-08 11:04:56 +00:00
obrien
e2881f49cc Remove multi-line __P() usage. 2002-03-22 09:22:15 +00:00
obrien
fd9d7ac0ed Remove __P() usage. 2002-03-21 23:54:04 +00:00
obrien
084b4588f2 Remove 'register' keyword. 2002-03-21 23:39:28 +00:00
des
b91092523b Remove a bogus cast. 2002-03-06 15:24:51 +00:00
dd
fee779d388 Correct a typo. 
PR:		35273
Submitted by:	Nicola Vitale <nivit@libero.it>
 2002-03-03 01:13:47 +00:00
bde
e89f04538e #include <time.h> for the definition of time functions instead of 
depending on namespace pollution 2 layers deep in <sys/stat.h>.

Sorted includes.
 2002-02-25 12:02:03 +00:00
bde
30b7ca1cdf #include <stddef.h> for the definition of NULL instead of depending on 
namespace pollution 2 layers deep in <sys/stat.h>.

Sorted includes.
 2002-02-25 01:25:30 +00:00
des
3f7a9ec821 ANSIfy and constify. 
Sponsored by:	DARPA, NAI Labs
 2002-02-05 06:49:11 +00:00
rwatson
a86bfc340f o Reflect repo-copy of extattr.[c3] from libutil to libc, moving 
extattr namespace routines to the libc/posix1e directory.  While
  the extattr calls are not strictly POSIX.1e, POSIX.1e wasn't
  strictly ever approved, so I think that's OK.

Obtained from:	TrustedBSD Project
 2001-11-16 05:09:45 +00:00
rwatson
25d4f2e1ac o Document 'nocheckmail' login capability. 2001-11-16 04:39:43 +00:00
rwatson
fccf958cd6 Although the 'bool' type is referenced in the list of capabilities, it 
is not defined in the capability type list.  Provide a definition for
'bool', if a slightly less than elegant one.  Note that this definition
does not include the complete scope of available behavior defined
in cgetcap(3), and could probably be improved.
 2001-11-16 02:40:09 +00:00
yar
c01da464b6 Fix the phrase about "both files", which must be left 
from login(3). This page, logwtmp(3), speaks of only
one file -- wtmp(5).

MFC after:	1 week
 2001-10-11 11:02:50 +00:00
ru
623da62a5a mdoc(7) police: Use the new .In macro for #include statements. 2001-10-01 16:09:29 +00:00
dillon
3f4eabe659 Add __FBSDID()s to libutil 2001-09-30 22:35:07 +00:00
ache
c8a3d8ce02 1) Back out ~/.login_conf disable 
2) Pick only "me" class from ~/.login_conf as documented
 2001-09-25 11:07:26 +00:00
rwatson
42e6b3b99d Disable per-user .login_conf support due to incorrect merging of local 
and globaly settings.  An alternative implementation will be developed.

Reported by:	Przemyslaw Frasunek <venglin@freebsd.lublin.pl>
 2001-09-16 16:48:40 +00:00
rwatson
d2c6f7e657 o Add a comment noting that the early setting of privileges for the purpose 
of NFS home directory and root directory processing fails to include
  additional groups.  This doesn't impact the final credential, but does
  mean that users may be denied login even when additional groups might
  allow it.
 2001-09-15 16:12:56 +00:00
ru
95ce4d2cdc Removed duplicate VCS ID tags, as per style(9). 2001-08-13 14:06:34 +00:00
ru
80f060f0cf mdoc(7) police: protect trailing full stops of abbreviations 
with a trailing zero-width space: `e.g.\&'.
 2001-08-10 13:45:36 +00:00
ume
512b8c359f Simplify IPv4 mapped IPv6 address handling. 
Reviewed by:	brian
MFC after:	5 days
 2001-07-23 21:42:22 +00:00