faillock: load configuration from file

* modules/pam_faillock/main.c: Load configuration from file * modules/pam_faillock/pam_faillock: Improve tally directory management * modules/pam_faillock/faillock_config.c: Print errors * modules/pam_faillock/faillock_config.h: Extend options structure and define get_tally_dir(). * modules/pam_faillock/Makefile.am: Compile faillock_config.c for faillock binary. * modules/pam_faillock/faillock.8.xml: Update with the new configuration option. Resolves: https://bugzilla.redhat.com/show_bug.cgi?id=1978029 Signed-off-by: Iker Pedrosa <ipedrosa@redhat.com>
author: Iker Pedrosa <ipedrosa@redhat.com> 2022-04-20 10:08:40 +0200
committer: Iker Pedrosa <ipedrosa@redhat.com> 2022-05-24 13:26:49 +0200
commit: fc867a9e22eac2c9a0ed0577776bba4df21c9aad (patch)
tree: c6530a416bd83be00ac260dd86cbd533981f0664 /modules/pam_faillock/faillock.8.xml
parent: 9bcbe96d9e82a23d983c0618178a8dc25596ac2d (diff)
download: pam-fc867a9e22eac2c9a0ed0577776bba4df21c9aad.tar.gz
pam-fc867a9e22eac2c9a0ed0577776bba4df21c9aad.tar.bz2
pam-fc867a9e22eac2c9a0ed0577776bba4df21c9aad.zip
1 files changed, 19 insertions, 2 deletions
diff --git a/modules/pam_faillock/faillock.8.xml b/modules/pam_faillock/faillock.8.xml
index 6c20593c..81d2107c 100644
--- a/modules/pam_faillock/faillock.8.xml
+++ b/modules/pam_faillock/faillock.8.xml
@@ -57,12 +57,29 @@
          <variablelist>
             <varlistentry>
               <term>
+                <option>--conf <replaceable>/path/to/config-file</replaceable></option>
+              </term>
+              <listitem>
+                <para>
+                  The file where the configuration is located. The default is
+                  <filename>/etc/security/faillock.conf</filename>.
+                </para>
+              </listitem>
+            </varlistentry>
+            <varlistentry>
+              <term>
                 <option>--dir <replaceable>/path/to/tally-directory</replaceable></option>
               </term>
               <listitem>
                 <para>
-                  The directory where the user files with the failure records are kept. The
-                  default is <filename>/var/run/faillock</filename>.
+                  The directory where the user files with the failure records are kept.
+                </para>
+                <para>
+                  The priority to set this option is to use the value provided
+                  from the command line. If this isn't provided, then the value
+                  from the configuration file is used. Finally, if neither of
+                  them has been provided, then
+                  <filename>/var/run/faillock</filename> is used.
                 </para>
               </listitem>
             </varlistentry>
author	Iker Pedrosa <ipedrosa@redhat.com>	2022-04-20 10:08:40 +0200
committer	Iker Pedrosa <ipedrosa@redhat.com>	2022-05-24 13:26:49 +0200
commit	fc867a9e22eac2c9a0ed0577776bba4df21c9aad (patch)
tree	c6530a416bd83be00ac260dd86cbd533981f0664 /modules/pam_faillock/faillock.8.xml
parent	9bcbe96d9e82a23d983c0618178a8dc25596ac2d (diff)
download	pam-fc867a9e22eac2c9a0ed0577776bba4df21c9aad.tar.gz pam-fc867a9e22eac2c9a0ed0577776bba4df21c9aad.tar.bz2 pam-fc867a9e22eac2c9a0ed0577776bba4df21c9aad.zip