aboutsummaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAgeFilesLines
* Drop hard-coded pre-dep on libpam0g, now superseded by shlibdeps.Steve Langasek2019-02-122-1/+2
|
* Bump the version check for service restarts to 1.3.1-2. Closes: #922178.Steve Langasek2019-02-123-3/+10
|
* Further cleanup of patch to avoid accidental regeneration of docsSteve Langasek2019-02-121-53/+54
|
* releasing package pam version 1.3.1-1Steve Langasek2019-02-121-2/+2
|
* Document upstream bug closureSteve Langasek2019-02-121-0/+2
| | | | Bug-Debian: https://bugs.debian.org/825782
* Document bug closureSteve Langasek2019-02-121-1/+1
| | | | Bug-Debian: https://bugs.debian.org/821408
* Clean up patch so that we don't accidentally regenerate manpage againSteve Langasek2019-02-121-13/+13
|
* Document upstream bug closureSteve Langasek2019-02-111-0/+2
| | | | Bug-Debian: https://bugs.debian.org/889910
* Document upstream bug closureSteve Langasek2019-02-111-0/+2
| | | | Bug-Debian: https://bugs.debian.org/762110
* Add debian/patches/fix-autoreconf.patchAndreas Henriksson2019-02-113-0/+30
|
* Update debian/watch.Steve Langasek2019-02-112-4/+3
|
* Update debian/libpam0g.symbolsAndreas Henriksson2019-02-112-0/+5
|
* Refresh patchesSteve Langasek2019-02-112-105/+46
|
* Switch source package to 3.0 (quilt) to consume upstream .tar.xz.Steve Langasek2019-02-112-0/+2
|
* Merge upstream version 1.3.1Steve Langasek2019-02-11370-2981/+3597
|\
| * New upstream version 1.3.1Steve Langasek2019-02-12369-2980/+3596
| |\
| | * Release version 1.3.1Thorsten Kukuk2018-05-18100-3333/+3247
| | |
| | * Add xz compressionThorsten Kukuk2018-05-181-1/+3
| | |
| | * pam_motd: add support for a motd.d directory (#48)Allison Karlitskaya2018-05-162-28/+108
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Add a new feature to pam_motd to allow packages to install their own message files in a "motd.d" directory, to be displayed after the primary motd. Add an option motd_d= to specify the location of this directory. Modify the defaults, in the case where no options are given, to display both /etc/motd and /etc/motd.d. Fixes #47 * modules/pam_motd/pam_motd.c: add support for motd.d * modules/pam_motd/pam_motd.8.xml: update the manpage
| | * pam_umask: Fix documentation to align with order of loading umaskTomas Mraz2018-05-021-4/+4
| | | | | | | | | | | | | | | * modules/pam_umask/pam_umask.8.xml: Document the real order of loading umask.
| | * Fix missing word in documentation.Joey Chagnon2018-04-101-1/+1
| | | | | | | | | * doc/man/pam_get_user.3.xml: Fix it.
| | * pam_tally2 --reset: avoid creating a missing tallylog fileDmitry V. Levin2017-11-101-0/+12
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | There is no need for pam_tally2 in --reset=0 mode to create a missing tallylog file because its absence has the same meaning as its existence with the appropriate entry reset. This was not a big deal until useradd(8) from shadow suite release 4.5 started to invoke /sbin/pam_tally2 --reset routinely regardless of PAM configuration. The positive effect of this change is noticeable when using tools like cpio(1) that cannot archive huge sparse files efficiently. * modules/pam_tally2/pam_tally2.c [MAIN] (main) <cline_user>: Stat cline_filename when cline_reset == 0, exit early if the file is missing.
| | * pam_mkhomedir: Allow creating parent of homedir under /Tomas Mraz2017-11-101-7/+9
| | | | | | | | | | | | | | | * modules/pam_mkhomedir/mkhomedir_helper.c (make_parent_dirs): Do not skip creating the directory if we are under /.
| | * pam_tty_audit: Fix regression introduced by adding the uid range support.Tomas Mraz2017-10-091-5/+3
| | | | | | | | | | | | | | | | | | | | | * modules/pam_tty_audit/pam_tty_audit.c (parse_uid_range): Fix constification and remove unneeded code carried from pam_limits. (pam_sm_open_session): When multiple enable/disable options are present do not stop after first match.
| | * pam_access: Add note about spaces around ':' in access.conf(5)Tomas Mraz2017-09-061-0/+12
| | | | | | | | | | | | * modules/pam_access/access.conf.5.xml: Add note about spaces around ':'
| | * Workaround formatting problem in pam(8)Tomas Mraz2017-09-061-2/+1
| | | | | | | | | | | | * doc/man/pam.8.xml: Workaround formatting problem.
| | * pam_unix: Check return value of malloc used for setcred data (#24)Peter Urbanec2017-07-121-8/+12
| | | | | | | | | | | | | | | | | | | | | | | | Check the return value of malloc and if it failed print debug info, send a syslog message and return an error code. The test in AUTH_RETURN for ret_data not being NULL becomes redundant. Signed-off-by: Peter Urbanec <git.user@urbanec.net>
| | * pam_cracklib: Drop unused prompt macros.Tomas Mraz2017-07-101-6/+0
| | | | | | | | | | | | * modules/pam_cracklib/pam_cracklib.c: Drop the unused macros.
| | * pam_tty_audit: Support matching users by uid range.Tomas Mraz2017-06-282-12/+99
| | | | | | | | | | | | | | | | | | | | | * modules/pam_tty_audit/pam_tty_audit.c (parse_uid_range): New function to parse the uid range. (pam_sm_open_session): Call parse_uid_range() and behave according to its result. * modules/pam_tty_audit/pam_tty_audit.8.xml: Document the uid range matching.
| | * pam_access: support parsing files in /etc/security/access.d/*.confTomas Mraz2017-05-313-3/+39
| | | | | | | | | | | | | | | | | | | | | | | | | | | * modules/pam_access/pam_access.c (login_access): Return NOMATCH if there was no match in the parsed file. (pam_sm_authenticate): Add glob() call to go through the ACCESS_CONF_GLOB subdirectory and call login_access() on the individual files matched. * modules/pam_access/pam_access.8.xml: Document the addition. * modules/pam_access/Makefile.am: Add ACCESS_CONF_GLOB definition.
| | * pam_localuser: Correct the example in documentation.Tomas Mraz2017-04-111-2/+2
| | | | | | | | | | | | | | | * modules/pam_localuser/pam_localuser.8.xml: The example configuration does something different.
| | * pam_localuser: Correct documentation of return value.Tomas Mraz2017-04-111-3/+3
| | | | | | | | | | | | | | | * modules/pam_localuser/pam_localuser.8.xml: The module returns PAM_PERM_DENIED when the user is not listed.
| | * Make maxclassrepeat=1 behavior consistent with docs (#9)Saul Johnson2017-03-101-1/+1
| | | | | | | | | * modules/pam_cracklib/pam_cracklib.c (simple): Apply the maxclassrepeat when greater than 0.
| | * Properly test for strtol() failure to find any digits.Josef Moellers2017-02-091-1/+1
| | | | | | | | | | | | | | | * modules/pam_access/pam_access.c (network_netmask_match): Test for endptr set to beginning and not NULL.
| | * pam_exec: fix a potential null pointer dereferenceDaniel Abrecht2017-01-191-3/+6
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Fix a null pointer dereference when pam_prompt returns PAM_SUCCESS but the response is set to NULL. * modules/pam_exec/pam_exec.c (call_exec): Do not invoke strndupa with a null pointer. Closes: https://github.com/linux-pam/linux-pam/pull/2
| | * Add missing comma in the limits.conf.5 manpage.Antonio Ospite2016-12-071-1/+1
| | | | | | | | | | | | * modules/pam_limits/limits.conf.5.xml: add a missing comma
| | * Regular links doesn't work with -no-numbering -no-references.Tomas Mraz2016-11-141-1/+1
| | | | | | | | | | | | * configure.ac: Use elinks instead of links.
| | * pam_access: First check for the (group) match.Tomas Mraz2016-11-011-4/+4
| | | | | | | | | | | | | | | | | | | | | The (group) match is performed first to allow for groups containing '@'. * modules/pam_access/pam_access.c (user_match): First check for the (group) match.
| | * pam_ftp: Properly use the first name from the supplied listTomas Mraz2016-10-171-9/+12
| | | | | | | | | | | | | | | | | | * modules/pam_ftp/pam_ftp.c (lookup): Return first user from the list of anonymous users if user name matches. (pam_sm_authenticate): Free the returned value allocated in lookup().
| | * pam_issue: Fix no prompting in parse escape codes mode.Bartos-Elekes Zsolt2016-09-121-1/+1
| | | | | | | | | | | | * modules/pam_issue/pam_issue.c (read_issue_quoted): Fix misplaced strcat().
| | * xtests: remove bash dependencyMaxin B. John2016-06-3019-19/+19
| | | | | | | | | | | | | | | | | | | | | | | | There are no bash specific syntax in the xtest scripts. So, remove the bash dependency. Signed-off-by: Wenzong Fan <wenzong.fan@windriver.com> Signed-off-by: Maxin B. John <maxin.john@intel.com>
| | * Unification and cleanup of syslog log levels.Tomas Mraz2016-06-3026-82/+82
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * libpam/pam_handlers.c: Make memory allocation failures LOG_CRIT. * libpam/pam_modutil_priv.c: Make memory allocation failures LOG_CRIT. * modules/pam_echo/pam_echo.c: Make memory allocation failures LOG_CRIT. * modules/pam_env/pam_env.c: Make memory allocation failures LOG_CRIT. * modules/pam_exec/pam_exec.c: Make memory allocation failures LOG_CRIT. * modules/pam_filter/pam_filter.c: Make all non-memory call errors LOG_ERR. * modules/pam_group/pam_group.c: Make memory allocation failures LOG_CRIT. * modules/pam_issue/pam_issue.c: Make memory allocation failures LOG_CRIT. * modules/pam_lastlog/pam_lastlog.c: The lastlog file creation is syslogged with LOG_NOTICE, memory allocation errors with LOG_CRIT, other errors with LOG_ERR. * modules/pam_limits/pam_limits.c: User login limit messages are syslogged with LOG_NOTICE, stale utmp entry with LOG_INFO, non-memory errors with LOG_ERR. * modules/pam_listfile/pam_listfile.c: Rejection of user is syslogged with LOG_NOTICE. * modules/pam_namespace/pam_namespace.c: Make memory allocation failures LOG_CRIT. * modules/pam_nologin/pam_nologin.c: Make memory allocation failures LOG_CRIT, other errors LOG_ERR. * modules/pam_securetty/pam_securetty.c: Rejection of access is syslogged with LOG_NOTICE, non-memory errors with LOG_ERR. * modules/pam_selinux/pam_selinux.c: Make memory allocation failures LOG_CRIT. * modules/pam_succeed_if/pam_succeed_if.c: Make all non-memory call errors LOG_ERR. * modules/pam_time/pam_time.c: Make memory allocation failures LOG_CRIT. * modules/pam_timestamp/pam_timestamp.c: Make memory allocation failures LOG_CRIT. * modules/pam_unix/pam_unix_acct.c: Make all non-memory call errors LOG_ERR. * modules/pam_unix/pam_unix_passwd.c: Make memory allocation failures LOG_CRIT, other errors LOG_ERR. * modules/pam_unix/pam_unix_sess.c: Make all non-memory call errors LOG_ERR. * modules/pam_unix/passverify.c: Unknown user is syslogged with LOG_NOTICE. * modules/pam_unix/support.c: Unknown user is syslogged with LOG_NOTICE and max retries ignorance by application likewise. * modules/pam_unix/unix_chkpwd.c: Make all non-memory call errors LOG_ERR. * modules/pam_userdb/pam_userdb.c: Password authentication error is syslogged with LOG_NOTICE. * modules/pam_xauth/pam_xauth.c: Make memory allocation failures LOG_CRIT.
| | * pam_timestamp: fix typo in strncmp usageDmitry V. Levin2016-06-141-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Before this fix, a typo in check_login_time resulted to ruser and struct utmp.ut_user being compared by the first character only, which in turn could lead to a too low timestamp value being assigned to oldest_login, effectively causing bypass of check_login_time. * modules/pam_timestamp/pam_timestamp.c (check_login_time): Fix typo in strncmp usage. Patch-by: Anton V. Boyarshinov <boyarsh@altlinux.org>
| | * Correct the examples in pam_fail_delay(3) man page.Tomas Mraz2016-05-301-2/+2
| | | | | | | | | | | | doc/man/pam_fail_delay.3.xml: Correct the examples.
| | * Remove spaces in examples for access.conf.Tomas Mraz2016-05-112-25/+25
| | | | | | | | | | | | | | | | | | | | | | | | The spaces are ignored only with the default listsep. To remove confusion if non-default listsep is used they are removed from the examples. * modules/pam_access/access.conf: Remove all spaces around ':' in examples. * modules/pam_access/access.conf.5.xml: Likewise.
| | * build: avoid non-portable == with "test" (ticket #60)Mike Frysinger2016-05-051-5/+5
| | | | | | | | | | | | | | | | | | | | | POSIX says test only accepts =. Some shells (including bash) accept ==, but we should still stick to = for portability. * configure.ac: Replace == with = in "test" invocations.
* | | Fix lintian warnings; thanks to Andreas Henriksson <andreas@fatal.se> and ↵Steve Langasek2019-01-243-17/+4
| | | | | | | | | | | | Florian Vessaz <florian@florv.ch>
* | | Drop unused lintian overrides.Steve Langasek2019-01-242-5/+1
| | |
* | | Document bug closuresSteve Langasek2019-01-241-0/+2
| | |
* | | Refresh patchesSteve Langasek2019-01-2432-1416/+869
| | |
generated by cgit v1.2.3 (git 2.39.1) at 2025-05-10 03:07:04 +0000