system/freebsd-src
system/freebsd-src
1
0
Fork 0
mirror of https://github.com/freebsd/freebsd-src synced 2024-10-20 15:24:25 +00:00
Code Issues Packages Projects Releases Wiki Activity
84224 commits 77 branches 139 tags 3.4 GiB
Commit graph

295 commits

Author SHA1 Message Date
Jens Schweikhardt 57bd0fc6e8 english(4) police. 2002-12-27 12:15:40 +00:00
Chris Costello 2db19028d3 Document the `label' capability. 
Approved by:	re
Sponsored by:	DARPA, Network Associates Labs
Obtained from:	TrustedBSD Project
 2002-11-22 22:22:10 +00:00
Peter Wemm f316609eb4 Oops. Some ut_time stuff slipped through the cracks. These turned out 
to be non-fatal due to stack alignment roundups.
 2002-11-17 23:46:45 +00:00
Robert Watson 433c28e012 Add LOGIN_SETMAC to the list of flags that can't be set without class 
information, since we rely on the pwd entry to know what MAC labels
to set as part of the login process.

Obtained from:	TrustedBSD Project
Sponsored by:	DARPA, Network Associates Laboratories
 2002-11-12 22:30:01 +00:00
Sheldon Hearn a4df5101a3 Use "deprecated" instead of "depreciated" where appropriate. 2002-10-30 07:49:11 +00:00
Dag-Erling Smørgrav 6dcfea0f37 Don't forget to '\n'-terminate new entries. This unbreaks chpass -a. 
Submitted by:	joerg
 2002-10-29 13:58:42 +00:00
Robert Watson 84333872d8 If LOGIN_SETMAC is set and MAC is enabled in the kernel, then see 
if the user has a 'label' entry in their login class.  If so, attempt
to set that label on the process as part of the credential setup.  If
we're unable to parse the label, or unable to set the label, fail.
In the future, we may also want to warn if a label is set but the
kernel doesn't support MAC.

Approved by:	re
Obtained from:	TrustedBSD Project
Sponsored by:	DARPA, Network Associates Laboratories
 2002-10-23 03:17:22 +00:00
Peter Wemm 224af215a6 Zap now-unused SHLIB_MINOR 2002-09-28 00:25:32 +00:00
Philippe Charnier 7fed38d0a0 Replace various spelling with FALLTHROUGH which is lint()able 2002-08-25 13:10:45 +00:00
Robert Watson 27a68d26ae Add LOGIN_SETMAC, which will indicate to the user context management code 
that it should also set the user's default MAC label, if available and
permitted.

Obtained from:	TrustedBSD Project
Sponsored by:	DARPA, NAI Labs
 2002-08-16 02:14:21 +00:00
Robert Watson 909410cf5b Whitespace cleanup--it's not style(9), but it is consistent. Prep 
for MAC-related commits to the login infrastructure.

Obtained from:	TrustedBSD Project
Sponsored by:	DARPA, NAI Labs
 2002-08-11 01:48:43 +00:00
Ruslan Ermilov cc6638bd55 mdoc(7) police: spelling. 2002-08-09 12:08:47 +00:00
Andrey A. Chernov cc1b8dcb1c Add additional field 'overwrite' to login_vars. It mainly needed to handle 
"term" according to manpage, i.e. not overwrite it, if already present in
environment.
 2002-06-28 14:45:30 +00:00
Maxim Sobolev 07a1fb30e3 Backout previous delta (addition of -I${.CURDIR}/../../sys). 
Submitted by:	bde
 2002-06-26 13:25:23 +00:00
Maxim Sobolev af244dd67c Add -I${.CURDIR}/../../sys into CFLAGS, which should fix the world broken 
by RLIMIT_VMEM addition.
 2002-06-26 10:33:10 +00:00
Matthew Dillon b5c7be5728 Add documentation for vmemoryuse 2002-06-26 03:58:31 +00:00
Matthew Dillon 67577126f9 Make libutil aware of vmemoryuse in its login.conf cap processing (aka 
sshd, /usr/bin/login, etc)
 2002-06-26 03:54:18 +00:00
Nick Hibma 074dccd545 Be more clear in error messages. 
Distinguish between a held lock and a failed lock op.

If rpc.lockd is not running on a diskless client this makes clearer
what the problem is.
 2002-06-23 19:23:46 +00:00
Hajimu UMEMOTO 82684fa6da Return HOSTNAME_INVALIDADDR when reverse lookup is fail. 
Submitted by:	Sergey Zorin <sergey@cc.tpu.edu.ru>
 2002-06-07 17:25:19 +00:00
Garrett Wollman 5685a7738f Add used include of <string.h>. 2002-05-30 19:38:07 +00:00
Dag-Erling Smørgrav 95ed2ab27f If no old_pw was passed to pw_copy, compare just the name. 
Sponsored by:	DARPA, NAI Labs
 2002-05-08 14:52:32 +00:00
Dag-Erling Smørgrav e2ef54de51 Add passwd manipulation code based on parts of vipw and chpass. 
Sponsored by:	DARPA, NAI Labs
 2002-05-08 00:50:07 +00:00
Dag-Erling Smørgrav c720dea0f2 login(3) doesn't care about the controlling terminal any more. 2002-04-20 12:24:20 +00:00
Dag-Erling Smørgrav 324e8fd88f Fix for the sshd(8) utmp problem. Previously, login(3) would ignore the tty 
named by its argument and use ttyslot(3) instead to determine what slot to
use.  The problem is that sshd(8) calls pam_open_session(3) before forking
the child (as it should), at which point it does not have a controlling
terminal.  Also, ttyslot(3) is very crude as it assumes fd 0, 1 or 2 refers
to the controlling terminal, which is usually (but not always) the case.

Instead of using ttyslot(3) to determine the slot number, look up the
specified tty in /etc/ttys ourselves (this is what ttyslot(3) does anyway).

(perforce change 9969)

Sponsored by:	DARPA, NAI Labs
 2002-04-20 12:23:04 +00:00
Dag-Erling Smørgrav f9eaa746eb Make mppath and masterpasswd pointers instead of arrays, and initialize 
them to point at static strings that contain the default paths.  This
makes 'vipw -d' work again (I broke it in rev 1.21; apologies for taking
so long to fix it.)

Spotted by:	Olivier Houchard <doginou@cognet.ci0.org>
Sponsored by:	DARPA, NAI Labs
 2002-04-17 00:18:15 +00:00
Ceri Davies 8133673540 Add a missing cross-ref. 
Approved by:	murray
MFC after:	1 week
 2002-04-16 10:15:51 +00:00
Dag-Erling Smørgrav 1c9fd646f6 Remove bogus reference to _use_yp. 2002-04-15 15:50:59 +00:00
Ruslan Ermilov b00ba4ccbb Const poisoning. 2002-04-08 11:04:56 +00:00
David E. O'Brien 1372519b15 Remove multi-line __P() usage. 2002-03-22 09:22:15 +00:00
David E. O'Brien 69160b1eb7 Remove __P() usage. 2002-03-21 23:54:04 +00:00
David E. O'Brien be04b6d190 Remove 'register' keyword. 2002-03-21 23:39:28 +00:00
Dag-Erling Smørgrav 40e0f7deed Remove a bogus cast. 2002-03-06 15:24:51 +00:00
Dima Dorfman 246b0f8487 Correct a typo. 
PR:		35273
Submitted by:	Nicola Vitale <nivit@libero.it>
 2002-03-03 01:13:47 +00:00
Bruce Evans 3798cf8a70 #include <time.h> for the definition of time functions instead of 
depending on namespace pollution 2 layers deep in <sys/stat.h>.

Sorted includes.
 2002-02-25 12:02:03 +00:00
Bruce Evans 163ae6707c #include <stddef.h> for the definition of NULL instead of depending on 
namespace pollution 2 layers deep in <sys/stat.h>.

Sorted includes.
 2002-02-25 01:25:30 +00:00
Dag-Erling Smørgrav 93deb2ae12 ANSIfy and constify. 
Sponsored by:	DARPA, NAI Labs
 2002-02-05 06:49:11 +00:00
Robert Watson 5acb7446b0 o Reflect repo-copy of extattr.[c3] from libutil to libc, moving 
extattr namespace routines to the libc/posix1e directory.  While
  the extattr calls are not strictly POSIX.1e, POSIX.1e wasn't
  strictly ever approved, so I think that's OK.

Obtained from:	TrustedBSD Project
 2001-11-16 05:09:45 +00:00
Robert Watson 9d58ead2eb o Document 'nocheckmail' login capability. 2001-11-16 04:39:43 +00:00
Robert Watson 22524ffbb2 Although the 'bool' type is referenced in the list of capabilities, it 
is not defined in the capability type list.  Provide a definition for
'bool', if a slightly less than elegant one.  Note that this definition
does not include the complete scope of available behavior defined
in cgetcap(3), and could probably be improved.
 2001-11-16 02:40:09 +00:00
Yaroslav Tykhiy dc72bf81a8 Fix the phrase about "both files", which must be left 
from login(3). This page, logwtmp(3), speaks of only
one file -- wtmp(5).

MFC after:	1 week
 2001-10-11 11:02:50 +00:00
Ruslan Ermilov 32eef9aeb1 mdoc(7) police: Use the new .In macro for #include statements. 2001-10-01 16:09:29 +00:00
Matthew Dillon 8719c58fef Add __FBSDID()s to libutil 2001-09-30 22:35:07 +00:00
Andrey A. Chernov e36b245ca8 1) Back out ~/.login_conf disable 
2) Pick only "me" class from ~/.login_conf as documented
 2001-09-25 11:07:26 +00:00
Robert Watson 35105a5f91 Disable per-user .login_conf support due to incorrect merging of local 
and globaly settings.  An alternative implementation will be developed.

Reported by:	Przemyslaw Frasunek <venglin@freebsd.lublin.pl>
 2001-09-16 16:48:40 +00:00
Robert Watson 8df8b73f3c o Add a comment noting that the early setting of privileges for the purpose 
of NFS home directory and root directory processing fails to include
  additional groups.  This doesn't impact the final credential, but does
  mean that users may be denied login even when additional groups might
  allow it.
 2001-09-15 16:12:56 +00:00
Ruslan Ermilov 8af1452cf8 Removed duplicate VCS ID tags, as per style(9). 2001-08-13 14:06:34 +00:00
Ruslan Ermilov 57e4378bf6 mdoc(7) police: protect trailing full stops of abbreviations 
with a trailing zero-width space: `e.g.\&'.
 2001-08-10 13:45:36 +00:00
Hajimu UMEMOTO 27daeab3ec Simplify IPv4 mapped IPv6 address handling. 
Reviewed by:	brian
MFC after:	5 days
 2001-07-23 21:42:22 +00:00
Assar Westerlund 27e79ba285 remove emalloc,ecalloc,erealloc,estrdup 2001-07-23 12:42:07 +00:00
Assar Westerlund c9a4f950b3 add ecalloc, emalloc, erealloc, estrdup - versions of the e-less 
functions that exit instead of failing
 2001-07-22 22:26:37 +00:00