| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| ... | |
| | | |
|
| | | |
|
| | | |
|
| | | |
|
| |\ \
| |/
|/|
| | |
Update to upstream version '1.7.0'
with Debian dir 0b3cd490884352e14273caeca2f05c6a525499fa
|
| | |\ |
|
| | | |
| | |
| | |
| | | |
* maint/README-release: Update.
|
| | | |
| | |
| | |
| | | |
Complements: 613e59dca703 ("build: drop autotools support")
|
| | | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
* meson.build: Raise project version to 1.7.0.
* po/meson.build: Likewise.
* po/Linux-PAM.pot (Project-Id-Version): Likewise.
* libpam/include/security/_pam_types.h (__LINUX_PAM_MINOR__): Update.
* NEWS: Update.
Resolves: https://github.com/linux-pam/linux-pam/issues/844
|
| | | |
| | |
| | |
| | | |
There is no point in supporting two different build systems.
|
| | | | |
|
| | | | |
|
| | | | |
|
| | | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
* modules/pam_access/access.conf.5.xml: `LOCAL` keyword behaviour
explanation was focused on the development internals. Let's clarify it
by rephrasing it to something a sysadmin can understand.
Resolves: https://issues.redhat.com/browse/RHEL-39943
Signed-off-by: Iker Pedrosa <ipedrosa@redhat.com>
|
| | | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
* modules/pam_access/pam_access.c: match the local address regardless of
the IP version in use.
In some circumstances the `localhost` may be translated to IPv4 or IPv6,
but the configuration file only indicated the address for one of the two
versions. Since the originating value is set in `PAM_RHOST` and PAM has
no control over it, let's match the local addresses regardless of the IP
version in use.
Resolves: https://issues.redhat.com/browse/RHEL-23018
Signed-off-by: Iker Pedrosa <ipedrosa@redhat.com>
|
| | | |
| | |
| | |
| | |
| | | |
* ci/meson-build.sh: Check that "git status" does not report
any differences or untracked files.
|
| | | |
| | |
| | |
| | |
| | | |
Move DESTDIR inside the build tree to reduce the number of top level
directories used for tests.
|
| | | |
| | |
| | |
| | |
| | |
| | | |
This also prevents a potential NULL pointer dereference in
pam_get_authtok_internal and pam_get_authtok_verify when
the pamh argument they access is set to NULL.
|
| | | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
gdbm_close() used to return void, later it was changed to return int.
We cannot assume either way and have to check whether gdbm_close()
returns int.
Fixes: 45c2c496dcf8 ("pam_userdb: enable GDBM support")
|
| | | |
| | |
| | |
| | |
| | |
| | | |
Regenerate po/Linux-PAM.pot and po/*.po using "meson compile
Linux-PAM-update-po" command. This essentially updates the line numbers
and timestamps.
|
| | | | |
|
| | | |
| | |
| | |
| | |
| | |
| | | |
Currently translated at 100.0% (101 of 101 strings).
Translate-URL: https://translate.fedoraproject.org/projects/linux-pam/master/ko/
|
| | | |
| | |
| | |
| | |
| | |
| | | |
Currently translated at 100.0% (101 of 101 strings).
Translate-URL: https://translate.fedoraproject.org/projects/linux-pam/master/ko/
|
| | | |
| | |
| | |
| | |
| | |
| | | |
Currently translated at 100.0% (101 of 101 strings).
Translate-URL: https://translate.fedoraproject.org/projects/linux-pam/master/ja/
|
| | | |
| | |
| | |
| | |
| | |
| | | |
Currently translated at 100.0% (101 of 101 strings).
Translate-URL: https://translate.fedoraproject.org/projects/linux-pam/master/ga/
|
| | | |
| | |
| | |
| | |
| | |
| | | |
Currently translated at 100.0% (101 of 101 strings).
Translate-URL: https://translate.fedoraproject.org/projects/linux-pam/master/fr/
|
| | | |
| | |
| | |
| | |
| | |
| | | |
Currently translated at 97.0% (98 of 101 strings).
Translate-URL: https://translate.fedoraproject.org/projects/linux-pam/master/nn/
|
| | | |
| | |
| | |
| | |
| | |
| | | |
Currently translated at 100.0% (101 of 101 strings).
Translate-URL: https://translate.fedoraproject.org/projects/linux-pam/master/sl/
|
| | | | |
|
| | | | |
|
| | | |
| | |
| | |
| | |
| | | |
Even though ubuntu-latest is still ubuntu-22.04 yet, let's move on
by switching builder jobs to ubuntu-24.04.
|
| | | |
| | |
| | |
| | |
| | | |
These clang versions suddenly disappeared from ubuntu-22.04 repository,
and it is unlikely that old clang jobs will be missed anyway.
|
| | | |
| | |
| | |
| | |
| | |
| | | |
When creating a socket pipe for communication between the parent and the
child process, each of these two processes should keep just one of these
socket pipe descriptors.
|
| | | |
| | |
| | |
| | | |
Resolves: https://github.com/linux-pam/linux-pam/issues/829
|
| | | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
At the end of the loop the iterator `i` can be equal to
`PAM_MAX_RESP_SIZE`, which will cause an index call outside the array
in the `input[i] = '\0';`
Signed-off-by: Dmitry V. Levin <ldv@strace.io>
|
| | | |
| | |
| | |
| | |
| | | |
If vendordir is enabled, the distribution provided configuration files
should be below this directory and not in /etc.
|
| | | |
| | |
| | |
| | |
| | | |
Mark a few files and directories with export-ignore attribute so that
they won't be added to archive files.
|
| | | | |
|
| | | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
On my non-representative hardware, the full build using autotools
(./autogen.sh && CFLAGS=-O2 ./configure && make -j`nproc` && make -j`nproc` install)
takes about 45 seconds.
On the same hardware, the full build using meson
(meson setup -Doptimization=2 dir && meson compile -C dir && meson install -C dir)
takes just about 7.5 seconds.
|
| | | |
| | |
| | |
| | |
| | |
| | | |
doc/specs/formatter/.gitignore became irrelevant along with the whole
doc/specs/formatter directory after commit
96eb2dc401f785e2b35a2089dda24416ff9bb305 back in 2005.
|
| | | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
As crypt_r is expected to return a pointer into a provided crypt_data
struct, callers should not modify the string returned by crypt_r after
freeing the corresponding crypt_data struct.
Co-authored-by: Dmitry V. Levin <ldv@strace.io>
|
| | | |
| | |
| | |
| | |
| | |
| | |
| | | |
The utmp database is unreliable for counting logged in users, since
there is no standard which defines who should create an entry at which
time for which reason. And it has a Y2038 problem with glibc/x86-64.
Query systemd-logind for the number of user sessions instead.
|
| | | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
Since systemd added new types of classes (e.g. manager*), we cannot
use the count of all sessions anymore, but have to check which class
this is.
This is backward compatible, systemd v209 or newer is required.
|
| | | |
| | |
| | |
| | | |
This simplifies integration of xtests into test frameworks.
|
| | | | |
|
| | | |
| | |
| | |
| | |
| | |
| | | |
The code there cannot be compiled at least since introduction
of autotools build system by commit
23624ea6f78ec8acc167a2491c00998907fc76b1 back in 2005.
|
| | | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
Following the recent news about the latest change of the FSF postal address,
replace the FSF postal address in the GNU GPL license notice with the URL.
Apparently, "Information for maintainers of GNU Software" for quite
a long time suggests using the URL instead of the postal address.
Link: https://lists.gnu.org/archive/html/info-gnu/2024-09/msg00000.html
Link: https://www.gnu.org/prep/maintain/html_node/License-Notices-for-Code.html
|
| | | |
| | |
| | |
| | |
| | |
| | | |
As the script is for autotools-based builds, give it a more descriptive
name, so it wouldn't be confused with build scripts for other build
systems.
|
| | | |
| | |
| | |
| | | |
Make sure that config.h is included before any system header.
|
| | | |
| | |
| | |
| | |
| | | |
Given that pam_fail_delay is always provided by libpam, checking for
HAVE_PAM_FAIL_DELAY may have any sense only in third-party modules.
|
