Commit Graph

158 Commits

Author SHA1 Message Date
joerg a216da57a6 Default to -Wno-sign-compare -Wno-pointer-sign for clang.
Push -Wno-array-bounds down to the cases that depend on it.
Selectively disable warnings for 3rd party software or non-trivial
issues to be reviewed later to get clang -Werror to build most of the
tree.
2011-05-26 12:56:24 +00:00
drochner 69de8de8f1 remove excess newlines in debug output 2011-05-06 17:22:09 +00:00
christos 736e11067f - make log_krb5 varyadic
- centralize error handling to one function
- check for NULL context
2011-04-25 22:22:25 +00:00
christos def46fd94a fix pasto (of no consequence) 2011-04-25 22:03:20 +00:00
christos 4a04b195ef - make log_krb5 varyadic and merge the last error message.
- check for NULL context.
- print a more meaningful error when things go south
2011-04-25 22:01:04 +00:00
elric 0fce8776fa Stop using functions that are marked as deprecated in Heimdal. 2011-04-24 18:53:55 +00:00
elric a9c7955034 Remove use of functions marked as deprecated in Heimdal. 2011-04-24 18:48:04 +00:00
elric 98fbe74f8c Upgrade Heimdal to 1.5pre1 by switching the build from crypto/dist/heimdal
to crypto/external/bsd/heimdal.  The latter was just imported as the head
of the Heimdal tree as of a few days ago.
2011-04-15 18:05:42 +00:00
mbalmer 8ac2ff5d25 Fix misplaced parenthesis, from henning.petersen@t-online.de, thanks. 2011-04-02 10:22:09 +00:00
mlelstv c619be51ca Don't try to clean/build or install a library here, there are only
subdirectories.

Also, bsd.lib.mk requires a defined LIB, otherwise it will generate
unwanted commands during clean. It even failed on netbsd-4 where
'rm -f' needs at least one parameter which is missing due to recent
corrections in make/vars.c.
2011-03-08 09:49:42 +00:00
christos d7b3467511 PR/44505: Mark Davies: pam_exec fails to realloc enough space, while
there add a volatile variable (From FreeBSD)
2011-02-03 02:05:59 +00:00
joerg 6ccee47911 Revert last as gcc(1) checks for -r to disable passing down --relax e.g.
on Sparc.
2010-12-10 20:06:17 +00:00
joerg 72183148bb Explicitly pass down -r as linker option. 2010-12-08 02:07:25 +00:00
wiz 80b39d395e Fix typo in comment. 2010-11-28 01:31:26 +00:00
christos fabd9ea05b explain better what's going on here. 2010-11-28 00:50:16 +00:00
adam d26d65ff82 Use ssh_add_identity_constrained() instead of ssh_add_identity() 2010-11-21 20:41:36 +00:00
joerg 9601c032f2 Mask %U 2010-05-13 23:07:46 +00:00
christos bbde328be4 Build the modules in two phases:
1. build the static modules first, before libpam so that the static
   libpam can link against the module .a files.
2. build the modules after the dynamic libpam is build, so that the
   dynamic modules can link against the dynamic libpam.
2010-05-03 22:12:32 +00:00
christos 7283382b7f make the dependency to libpam, explicit. Fixes afpd in pkgsrc. From Mark Davies
XXX: Should be pulled up to 4.x and 5.x.
2010-05-03 12:58:09 +00:00
wiz 64e964907b Close file handle after using it. Found by cppcheck. 2010-01-17 23:17:08 +00:00
matt 1819481222 Merge from matt-nb5-mips64 2009-12-14 01:11:02 +00:00
mrg 6af15ae20b if BSD_MK_COMPAT_FILE is defined, .include it. 2009-12-13 09:01:45 +00:00
mrg f7f0bc40ae rename LD32DIR to MLIBDIR. 2009-12-13 08:25:20 +00:00
drochner fa423103c6 if changing the password, don't clear PAM_AUTHTOK at the beginning -- this
sabotages external password strength checkers
2009-11-18 17:06:23 +00:00
christos cbeabf798d use new openssh tree 2009-07-20 18:01:41 +00:00
christos 75efea6592 bump libcrypto and friends; OpenSSL abi change: do_cipher last argument
changed from u_int to size_t. Affects _LP64 only.
2009-07-20 17:30:52 +00:00
christos 8a00156352 use the proper libcrypto 2009-07-20 17:28:51 +00:00
tonnerre c08078c2c3 Restore the good old UNIX behavior of root password changing: only root
may change the root password.

(Checked that everybody else's password can be changed without any problem,
and checked that root can still change the root password.)
2009-06-14 23:23:54 +00:00
mrg 7e7627c1df build libnetpgp and libssh earlier.
look for libssh in the right place.
2009-06-09 05:20:15 +00:00
christos ea6a01a6c4 consistency in password prompt setting code (and with ssh) 2009-03-08 19:38:03 +00:00
christos 17413e263b custom password prompt that displays the user. 2009-02-11 18:38:56 +00:00
lukem ee7c6ab326 sign-compare fixes 2009-01-26 04:01:14 +00:00
christos 46edb91e9f bump shared libraries. 2009-01-11 03:07:47 +00:00
reed c2af20cf20 Add missing copyright and license.
This license is identical to that on the pam_krb5.c file minus the
other copyrights and the unrelated contract attribution.

From email communication with the author, Frank Cusack.
2008-12-02 22:52:06 +00:00
mrg fc9a1e8a64 use LIBDPLIBS+= not =. 2008-10-27 07:57:41 +00:00
mrg 6b767a6846 don't set LIBDPLIBS in libpam/modules/Makefile - it is not necessary
and it interferes with the compat lib build.  don't use LIB_ROOT_DIR.
2008-10-27 07:48:27 +00:00
mrg 48ca1b1f37 XXX: fix compat/libpam static build -- find the right libc via _CURDIR
XXX: not .CURDIR, if _CURDIR exists.
2008-10-26 07:44:12 +00:00
he d1eb8042a4 Recursively bump the major version number of the shared libraries
which use libcrypto (and those which use those libraries again),
as libcrypto's major number was recently bumped.  The pam modules
share a major with libpam, so they are all bumped as well.
2008-05-11 19:17:06 +00:00
martin 11a6dbe728 Convert TNF licenses to new 2 clause variant 2008-04-30 13:10:46 +00:00
martin ce099b4099 Remove clause 3 and 4 from TNF licenses 2008-04-28 20:22:51 +00:00
lukem 235fbd4ecb pam_group needs libutil & libcrypt 2008-03-20 02:19:48 +00:00
christos dedb237183 Remove static module defines; they are done in openpam.h now. 2008-01-27 20:26:56 +00:00
christos 9d58de27f0 Install a new include file. 2008-01-27 01:27:05 +00:00
christos 4466f6b5f6 Fix compilation 2008-01-27 01:23:20 +00:00
wiz 46b4723955 eg -> e.g. 2007-12-01 18:33:11 +00:00
ragge 592fd7eafc __FUNCTION__ -> __func__. 2007-09-15 14:30:56 +00:00
tls 4147a3c54a Add new Makefile knob, USE_FORT, which extends USE_SSP by turning on the
FORTIFY_SOURCE feature of libssp, thus checking the size of arguments to
various string and memory copy and set functions (as well as a few system
calls and other miscellany) where known at function entry.  RedHat has
evidently built all "core system packages" with this option for some time.

This option should be used at the top of Makefiles (or Makefile.inc where
this is used for subdirectories) but after any setting of LIB.

This is only useful for userland code, and cannot be used in libc or in
any code which includes the libc internals, because it overrides certain
libc functions with macros.  Some effort has been made to make USE_FORT=yes
work correctly for a full-system build by having the bsd.sys.mk logic
disable the feature where it should not be used (libc, libssp iteself,
the kernel) but no attempt has been made to build the entire system with
USE_FORT and doing so will doubtless expose numerous bugs and misfeatures.

Adjust the system build so that all programs and libraries that are setuid,
directly handle network data (including serial comm data), perform
authentication, or appear likely to have (or have a history of having)
data-driven bugs (e.g. file(1)) are built with USE_FORT=yes by default,
with the exception of libc, which cannot use USE_FORT and thus uses
only USE_SSP by default.  Tested on i386 with no ill results; USE_FORT=no
per-directory or in a system build will disable if desired.
2007-05-28 12:06:17 +00:00
christos 50873dad9c bump date 2007-03-10 18:31:42 +00:00
christos 6ccceec0a3 tyop 2007-03-10 18:31:07 +00:00
christos 33aa8ab0d0 off by one, reported by jukka salmi. 2007-03-10 18:30:45 +00:00