| History log of /src/usr.bin/login/login_pam.c |
| Revision | | Date | Author | Comments |
| 1.29 |
| 07-Sep-2025 |
andvar | Fix various typos, mainly in comments.
|
| 1.28 |
| 24-Jan-2022 |
andvar | s/begining/beginning/ in comments and messages.
|
| 1.27 |
| 10-Sep-2021 |
rillig | usr.bin: remove unnecessary lint comment CONSTCOND
Since 2021-01-31, lint no longer warns about 'do ... while (0)'.
No functional change.
|
| 1.26 |
| 08-Feb-2020 |
kamil | Avoid use-after-free bug in PAM environment
Traditional BSD putenv(3) was creating an internal copy of the passed
argument. Unfortunately this was causing memory leaks and was changed by
POSIX to not allocate.
Adapt the putenv(3) usage to modern POSIX (and NetBSD) semantics.
|
| 1.25 |
| 29-Oct-2015 |
shm | branches: 1.25.16;
- Added error checks for initgroups(3) and setgroups(2).
- Reorder functions in privilege regain - setgroups(2) should be called after
seteuid(2).
OK christos@
|
| 1.24 |
| 12-Nov-2014 |
aymeric | Remove the syslogging of a dial out login warning based on the tty name, because
the test is sloppy and doesn't correspond to the current naming anyway.
OK gdt@
PR#377 can remain closed.
|
| 1.23 |
| 18-Oct-2013 |
christos | branches: 1.23.4;
fix unused variable warnings
|
| 1.22 |
| 23-Apr-2012 |
martin | branches: 1.22.2;
trimusername (which does not exist) probably was meant to be called
trimloginname (which does exist, at least)
|
| 1.21 |
| 22-Apr-2012 |
christos | make krb5 compile again. XXX: one function left that is deprecated, what's
the new equivalent?
|
| 1.20 |
| 29-Dec-2009 |
christos | branches: 1.20.6; 1.20.8;
PR/42540: Ed Ravin: /usr/bin/login does not log normal logins, and does not
log ip addresses.
- Factor out the common code in login.c and login_pam.c into common.c
- Always log a login event
- Check passed in sockaddr against the one from getpeername(2).
|
| 1.19 |
| 21-Jul-2008 |
lukem | Remove the \n and tabs from the __COPYRIGHT() strings.
Tweak to use a consistent format.
|
| 1.18 |
| 09-May-2007 |
christos | branches: 1.18.12;
PR/36294: De Zeurkous: login(1) -- inconsistent exit behavior on EOF
- Always EXIT_FAILURE when login fails.
- Cleanup fork code in krb5 (old login).
|
| 1.17 |
| 17-Apr-2006 |
christos | GC old signal handling and merge it in 4 places:
1. Immediately ignore all the signals we want to ignore and set the alarm.
2. Before we exit on error, restore all signals we modified
3. Before we exec a shell, restore all signals we modified and ignore TSTP.
Job control aware shells know how to deal with this.
4. Temporarily handle SIGINT while we read motd.
|
| 1.16 |
| 22-Mar-2006 |
christos | PR/33128: Martin Husemann: When login in on the console, SIGABRT is ignored
Both SIGINT and SIGABRT should be restored before executing the shell.
|
| 1.15 |
| 19-Mar-2006 |
jnemeth | Fix Coverity run 5, issue 1931 -- memory leak. This was noted as being a
bug by cgilbert.
Approved by christos@.
|
| 1.14 |
| 08-Mar-2006 |
jnemeth | PR/23616: Christian Biere: login might not back-off as expected
|
| 1.13 |
| 06-Mar-2006 |
jnemeth | PR/30923: Zafer Aydogan: pam too verbose
Don't display a different message for root logins on insecure terminals.
Approved by christos@.
|
| 1.12 |
| 20-Feb-2006 |
christos | Propagate change from login.c where if getpeername succeeded, then we have
the sockaddr from the remote peer.
|
| 1.11 |
| 19-Feb-2006 |
christos | PR/32870: Johan Veenhuizen: login(1) does not obey .hushlogin
|
| 1.10 |
| 01-Nov-2005 |
christos | Update documentation for pam, and don't accept flags that we don't support
anymore.
|
| 1.9 |
| 21-Sep-2005 |
christos | use getgrnam_r; from Jon Nemeth
|
| 1.8 |
| 25-Apr-2005 |
matt | Terminate variable argument list with NULL, not 0.
|
| 1.7 |
| 19-Apr-2005 |
lukem | Safety boots: don't depend upon getpwnam_r() to set pwd to NULL on all
failures, especially as we're ignoring the return result.
|
| 1.6 |
| 03-Apr-2005 |
christos | Don't report that we don't know the username. We don't want to give out
more information that we need to.
|
| 1.5 |
| 30-Mar-2005 |
christos | - use getpwnam_r
- KNF
|
| 1.4 |
| 03-Mar-2005 |
christos | branches: 1.4.2;
1. Restore missing tty action.
2. Pass the nested user name to pam.
3. always try to fill in sockaddr.
|
| 1.3 |
| 28-Feb-2005 |
christos | - deal with ptyfs pty names.
- put back chown pty code.
- use setproctitle(NULL) to kill our argument display.
- don't wait for any pid, just the one we forked.
|
| 1.2 |
| 01-Feb-2005 |
christos | Add setting of PAM_SOCKADDR.
|
| 1.1 |
| 23-Jan-2005 |
manu | Add PAM support to login(8)
|
| 1.4.2.6 |
| 10-Mar-2006 |
tron | Pull up following revision(s) (requested by jnemeth in ticket #1201):
usr.bin/login/login_pam.c: revision 1.14
PR/23616: Christian Biere: login might not back-off as expected
|
| 1.4.2.5 |
| 09-Mar-2006 |
tron | Pull up following revision(s) (requested by jnemeth in ticket #1199):
usr.bin/login/login_pam.c: revision 1.13
PR/30923: Zafer Aydogan: pam too verbose
Don't display a different message for root logins on insecure terminals.
Approved by christos@.
|
| 1.4.2.4 |
| 09-Jul-2005 |
tron | branches: 1.4.2.4.2;
Pull up revision 1.8 (requested by lukem in ticket #531):
Terminate variable argument list with NULL, not 0.
|
| 1.4.2.3 |
| 09-Jul-2005 |
tron | Pull up revision 1.7 (requested by lukem in ticket #531):
Safety boots: don't depend upon getpwnam_r() to set pwd to NULL on all
failures, especially as we're ignoring the return result.
|
| 1.4.2.2 |
| 09-Jul-2005 |
tron | Pull up revision 1.6 (requested by lukem in ticket #531):
Don't report that we don't know the username. We don't want to give out
more information that we need to.
|
| 1.4.2.1 |
| 09-Jul-2005 |
tron | Pull up revision 1.5 (requested by lukem in ticket #531):
- use getpwnam_r
- KNF
|
| 1.4.2.4.2.2 |
| 10-Mar-2006 |
tron | Pull up following revision(s) (requested by jnemeth in ticket #1201):
usr.bin/login/login_pam.c: revision 1.14
PR/23616: Christian Biere: login might not back-off as expected
|
| 1.4.2.4.2.1 |
| 09-Mar-2006 |
tron | Pull up following revision(s) (requested by jnemeth in ticket #1199):
usr.bin/login/login_pam.c: revision 1.13
PR/30923: Zafer Aydogan: pam too verbose
Don't display a different message for root logins on insecure terminals.
Approved by christos@.
|
| 1.18.12.1 |
| 18-Sep-2008 |
wrstuden | Sync with wrstuden-revivesa-base-2.
|
| 1.20.8.2 |
| 08-May-2012 |
sborrill | Pull up the following revisions(s) (requested by martin in ticket #215):
usr.bin/login/login_pam.c: revision 1.22
Fix build.
trimusername (which does not exist) should be trimloginname.
|
| 1.20.8.1 |
| 07-May-2012 |
riz | Pull up following revision(s) (requested by christos in ticket #215):
usr.bin/login/login.c: revision 1.100
usr.bin/login/login.c: revision 1.101
usr.bin/login/login.c: revision 1.102
usr.bin/login/common.c: revision 1.4
usr.bin/login/common.h: revision 1.2
usr.bin/login/k5login.c: revision 1.28
usr.bin/login/k5login.c: revision 1.29
usr.bin/login/login.c: revision 1.99
usr.bin/login/login_pam.c: revision 1.21
usr.bin/login/Makefile: revision 1.53
usr.bin/login/Makefile: revision 1.54
usr.bin/login/Makefile: revision 1.55
usr.bin/login/k5login.c: revision 1.30
usr.bin/login/k5login.c: revision 1.31
usr.bin/login/k5login.c: revision 1.32
usr.bin/login/k5login.c: revision 1.33
make krb5 compile again. XXX: one function left that is deprecated, what's
the new equivalent?
centralize error function processing.
fix the USE_KERBEROS=no USE_PAM=no build.
remove obsolete comment.
make kerberos work again:
1. make notickets external
2. don't use the tty as part of the credential cache, since pts/1 will not work.
3. Attempt to use the newer functions, but punt for now since it does not work
yet.
don't abuse the instance variable
move more of the compat code in the compat block.
last commit before I nuke the old code.
no more KRB5_DEPRECATED
|
| 1.20.6.2 |
| 22-May-2014 |
yamt | sync with head.
for a reference, the tree before this commit was tagged
as yamt-pagecache-tag8.
this commit was splitted into small chunks to avoid
a limitation of cvs. ("Protocol error: too many arguments")
|
| 1.20.6.1 |
| 23-May-2012 |
yamt | sync with head.
|
| 1.22.2.1 |
| 20-Aug-2014 |
tls | Rebase to HEAD as of a few days ago.
|
| 1.23.4.1 |
| 11-Feb-2015 |
snj | Pull up following revision(s) (requested by aymeric in ticket #506):
usr.bin/login/login.c: revision 1.105
usr.bin/login/login_pam.c: revision 1.24
Remove the syslogging of a dial out login warning based on the tty name, because
the test is sloppy and doesn't correspond to the current naming anyway.
OK gdt@
PR#377 can remain closed.
|
| 1.25.16.1 |
| 08-Apr-2020 |
martin | Merge changes from current as of 20200406
|
