summaryrefslogtreecommitdiff
path: root/pam
AgeCommit message (Collapse)Author
2014-10-04remove non-nslcd stuffLuke Shumaker
2013-11-25Add a test for pam_get_item() argument typeArthur de Jong
This checks whether pam_get_item() takes a const void ** or void ** item value argument and defines a PAM_ITEM_CONST macro that is const when it should. This avoids some compiler warnings.
2013-10-29Fix a number of compiler warningsArthur de Jong
This includes a number of small fixes for issues that were formerly masked by the incorrect AC_LANG_PROGRAM check.
2013-09-13Initialise msg to avoid potential NULL pointer dereferenceArthur de Jong
The NULL pointer dereference in the PAM module should not occur due to the relationship with the rc value that is handled alongside it. This change mostly silences the compiler and protects from future changes.
2013-08-18Small fix in NEW_AUTHTOK_REQD handlingArthur de Jong
There is a potential memory leak if the old password is saved multiple times. Furthermore, PAM_NEW_AUTHTOK_REQD is only allowed as a result of the authorisation phase, not the authentication phase so there is no use in checking.
2013-01-06do not recheck the user password in first password phase if it was stored in ↵Arthur de Jong
the authentication phase git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1904 ef36b2f9-881f-0410-afb5-c4e39611909c
2013-01-05save the old password if either the authentication or the authorisation ↵Arthur de Jong
response is NEW_AUTHTOK_REQD git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1899 ef36b2f9-881f-0410-afb5-c4e39611909c
2012-12-22update C coding style to a more commonly used styleArthur de Jong
git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1873 ef36b2f9-881f-0410-afb5-c4e39611909c
2012-12-16change PAM protocol to be more consistent and simplerArthur de Jong
git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1865 ef36b2f9-881f-0410-afb5-c4e39611909c
2012-12-16switch protocol from host byte order to network byte order and switch use of ↵Arthur de Jong
uid_t and gid_t in the protocol to int32 git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1864 ef36b2f9-881f-0410-afb5-c4e39611909c
2012-11-17use pam_modutil_getpwnam() instead of getpwnam() in PAM moduleArthur de Jong
git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1832 ef36b2f9-881f-0410-afb5-c4e39611909c
2012-11-11log the PAM error message along with the message from nslcd if it is availableArthur de Jong
git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1823 ef36b2f9-881f-0410-afb5-c4e39611909c
2012-07-11also check pam_password_prohibit_message in pam_sm_authenticate() because ↵Arthur de Jong
Solaris does authentication before pam_sm_chauthtok() (thanks Ted Cheng) git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1716 ef36b2f9-881f-0410-afb5-c4e39611909c
2012-07-08implement a pam_password_prohibit_message nslcd.conf option to deny password ↵Arthur de Jong
change introducing a NSLCD_ACTION_CONFIG_GET request thanks to Ted Cheng git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1715 ef36b2f9-881f-0410-afb5-c4e39611909c
2012-06-15fix problem with returning wrong error code when changing password with ↵Arthur de Jong
wrong old password (thanks Anton Helwart) git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1702 ef36b2f9-881f-0410-afb5-c4e39611909c
2011-08-14put external libraries at the end when linkingArthur de Jong
git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1504 ef36b2f9-881f-0410-afb5-c4e39611909c
2011-04-30make log message clearer when nslcd returns an empty response (user not handled)Arthur de Jong
git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1450 ef36b2f9-881f-0410-afb5-c4e39611909c
2011-04-30split setting up of configuration into separate functionArthur de Jong
git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1448 ef36b2f9-881f-0410-afb5-c4e39611909c
2011-04-30do not attempt to change password as root when changing an expired passwordArthur de Jong
git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1445 ef36b2f9-881f-0410-afb5-c4e39611909c
2011-04-29support more PAM status codes over the nslcd protocolArthur de Jong
git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1440 ef36b2f9-881f-0410-afb5-c4e39611909c
2011-03-19small code improvementsArthur de Jong
git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1400 ef36b2f9-881f-0410-afb5-c4e39611909c
2011-03-14check for user existence before trying password changeArthur de Jong
git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1394 ef36b2f9-881f-0410-afb5-c4e39611909c
2011-03-10update copyright headers to add missing yearsArthur de Jong
git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1384 ef36b2f9-881f-0410-afb5-c4e39611909c
2010-12-29fix distcheck by passing --with-pam-seclib-dir to configure and remove ↵Arthur de Jong
unneeded slashes git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1348 ef36b2f9-881f-0410-afb5-c4e39611909c
2010-12-12fallback to standard PAM error message if one wasn't returned by nslcdArthur de Jong
git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1326 ef36b2f9-881f-0410-afb5-c4e39611909c
2010-11-07fix installation directory for PAM module (was broken in r1239)Arthur de Jong
git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1307 ef36b2f9-881f-0410-afb5-c4e39611909c
2010-10-10make use of UNUSED() consistent throughout the codeArthur de Jong
git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1256 ef36b2f9-881f-0410-afb5-c4e39611909c
2010-10-10put all logic on how to run linker for NSS and PAM components in configure ↵Arthur de Jong
script (remove stuff from Makefile.ams) and add Solaris version script (renaming version scripts as needed) (r1250 from -solaris branch) git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1253 ef36b2f9-881f-0410-afb5-c4e39611909c
2010-10-04improve consistency of code layoutArthur de Jong
git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1240 ef36b2f9-881f-0410-afb5-c4e39611909c
2010-10-04merge some of the changes for Solaris portability to ease merging, adding ↵Arthur de Jong
--with-pam-seclib-dir, --with-pam-ldap-soname and --with-nss-flavour options and having some auto-detection for SONAMEs and NSS flavour git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1239 ef36b2f9-881f-0410-afb5-c4e39611909c
2010-09-05implement a rootpwmodpw option that allows root users to change user ↵Arthur de Jong
passwords without a password prompt git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1206 ef36b2f9-881f-0410-afb5-c4e39611909c
2010-06-15rename symbol map files and check for the linker option to specify the file withArthur de Jong
git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1143 ef36b2f9-881f-0410-afb5-c4e39611909c
2010-06-14make include guard names consistent throughout the source and avoid ↵Arthur de Jong
conflicts with system headers git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1140 ef36b2f9-881f-0410-afb5-c4e39611909c
2010-06-04fix nullok test for password modificationArthur de Jong
git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1134 ef36b2f9-881f-0410-afb5-c4e39611909c
2010-06-02simplify PAM module splitting remapping for ignore_* options to a separate ↵Arthur de Jong
function, parsing of try_first_pass and use_first_pass is done by pam_get_authtok(), don't report session errors to the user and make error handling consistent git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1131 ef36b2f9-881f-0410-afb5-c4e39611909c
2010-06-01implement an nullok PAM option and disable empty passwords by defaultArthur de Jong
git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1129 ef36b2f9-881f-0410-afb5-c4e39611909c
2010-06-01don't log failure to do nslcd request to user and log authentication errors ↵Arthur de Jong
during password change git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1128 ef36b2f9-881f-0410-afb5-c4e39611909c
2010-05-31fix typoArthur de Jong
git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1125 ef36b2f9-881f-0410-afb5-c4e39611909c
2010-05-24make code more consistentArthur de Jong
git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1120 ef36b2f9-881f-0410-afb5-c4e39611909c
2010-05-24don't store use_authtok because pam_get_authtok() looks at the arguments itselfArthur de Jong
git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1118 ef36b2f9-881f-0410-afb5-c4e39611909c
2010-05-14print uid as a longArthur de Jong
git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1107 ef36b2f9-881f-0410-afb5-c4e39611909c
2010-05-14perform logging from PAM module to syslog and support the debug option to ↵Arthur de Jong
log debugging information git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1106 ef36b2f9-881f-0410-afb5-c4e39611909c
2010-05-13centralise initialising functions needed for every PAM call into one functionArthur de Jong
git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1105 ef36b2f9-881f-0410-afb5-c4e39611909c
2010-05-13also use PAM username instead of one from context for session open and closeArthur de Jong
git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1103 ef36b2f9-881f-0410-afb5-c4e39611909c
2010-05-13replace my_pam_get_authtok() with standard pam_get_authtok() function, get ↵Arthur de Jong
rid of get_old_password() and general cleanups and simplifications git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1102 ef36b2f9-881f-0410-afb5-c4e39611909c
2010-05-12make parsing configuration options global, reorganise a bit and make code ↵Arthur de Jong
more consistent and easier to read git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1101 ef36b2f9-881f-0410-afb5-c4e39611909c
2010-05-10only log "LDAP session failed" if we actually triedArthur de Jong
git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1099 ef36b2f9-881f-0410-afb5-c4e39611909c
2010-05-10replace my_pam_warn() with pam_info() and pam_error() and provide ↵Arthur de Jong
replacement for pam_prompt() also using it in our pam_get_authtok() replacement git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1098 ef36b2f9-881f-0410-afb5-c4e39611909c
2010-05-06implement a minimum_uid option for the PAM module to ignore users that have ↵Arthur de Jong
a lower numeric user id git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1082 ef36b2f9-881f-0410-afb5-c4e39611909c
2010-01-24add admindn configuration file option that is used when modifying another ↵Arthur de Jong
user's password git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1059 ef36b2f9-881f-0410-afb5-c4e39611909c
generated by cgit v1.2.3-54-g00ecf (git 2.45.2) at 2025-08-12 13:33:11 +0000