aboutsummaryrefslogtreecommitdiff
path: root/contrib/opie
Commit message (Collapse)AuthorAgeFilesLines
* Revert r328492:Pedro F. Giffuni2018-01-281-1/+2
| | | | | | | | | | | | | "Fix gcc80 -Wsizeof-pointer-memaccess warning." The warning is bogus: GCC8 only looks at the size of the destination. We shouldn't be fixing imaginary problems, so perhaps its better to deal with this later on by disabling such warnings. Pointed out by: ed, bde Notes: svn path=/head/; revision=328506
* Fix gcc80 -Wsizeof-pointer-memaccess warning.Pedro F. Giffuni2018-01-271-2/+1
| | | | | | | Obtained from: DragonFlyBSD (git 56267d362d5769c8df07bf26d5e322610e0d24b4) Notes: svn path=/head/; revision=328492
* Last '/' for program name, not first oneAndrey A. Chernov2014-08-111-1/+1
| | | | | | | MFC after: 1 week Notes: svn path=/head/; revision=269811
* When sha1 support was added, they forget to increase OPIE_HASHNAME_MAXAndrey A. Chernov2014-08-111-2/+2
| | | | | | | MFC after: 1 week Notes: svn path=/head/; revision=269809
* Fix too long (seed length >12 chars) challenge handling.Andrey A. Chernov2014-08-112-3/+5
| | | | | | | | | | | | | | | | | | | | | 1) " ext" length should be included into OPIE_CHALLENGE_MAX (as all places of opie code expects that). 2) Overflow check in challenge.c is off by 1 even with corrected OPIE_CHALLENGE_MAX 3) When fallback to randomchallenge() happens and rval is 0 (i.e. challenge is too long), its value should be set to error state too. To demonstrate the bug, run opiepasswd with valid seed: opiepasswd -s 1234567890123456 and notice that it falls back to randomchallenge() (i.e. no 1234567890123456 in the prompt). PR: 191511 Submitted by: mitsururike@gmail.com (partially) MFC after: 1 week Notes: svn path=/head/; revision=269806
* Queisce two category of clang warnings:Sean Bruno2013-10-2812-0/+23
| | | | | | | | | | | | 1. missing explicit includes for string.h, stdio.h, etc 2. missing explicit declaration for some common functions I have been unable to contact the upstream maintainer for this patch, http://www.inner.net/opie appears to be the source of truth but it unreachable Notes: svn path=/head/; revision=257264
* In contrib/opie/opiekey.c, use the correct length to zero the secret.Dimitry Andric2013-02-161-3/+3
| | | | | | | | | Found by: clang ToT Reviewed by: delphij MFC after: 3 days Notes: svn path=/head/; revision=246873
* Clean up hardcoded ar(1) flags in the tree to use the global ARFLAGS inEitan Adler2012-12-062-2/+2
| | | | | | | | | | | | | | | share/mk/sys.mk instead. This is part of a medium term project to permit deterministic builds of FreeBSD. Submitted by: Erik Cederstrand <erik@cederstrand.dk> Reviewed by: imp, toolchain@ Approved by: cperciva MFC after: 2 weeks Notes: svn path=/head/; revision=243933
* RFC 2289 requires all hashes be stored in little endian format beforeXin LI2012-08-102-0/+18
| | | | | | | | | | | | | | | folding to 64 bits, while SHA1 code is big endian. Therefore, a bswap32 is required before using the value. Without this change, the implementation does not conform to test vector found in RFC 2289. PR: bin/170519 Submitted by: Arthur Mesh <arthurmesh gmail com> (with changes) MFC after: 1 week Notes: svn path=/head/; revision=239169
* Change the current working directory to be inside the jail created byColin Percival2010-05-271-3/+1
| | | | | | | | | | | | | | | | | the jail(8) command. [10:04] Fix a one-NUL-byte buffer overflow in libopie. [10:05] Correctly sanity-check a buffer length in nfs mount. [10:06] Approved by: so (cperciva) Approved by: re (kensmith) Security: FreeBSD-SA-10:04.jail Security: FreeBSD-SA-10:05.opie Security: FreeBSD-SA-10:06.nfsclient Notes: svn path=/head/; revision=208586
* Don't include <utmp.h> when using <utmpx.h>.Ed Schouten2010-01-113-3/+6
| | | | | | | | | | libopie includes both <utmp.h> and <utmpx.h> in this case and uses some #defines to let the code use struct utmpx and its utility functions. We'd better not include <utmp.h> here, because maybe it will not be present in the future. Notes: svn path=/head/; revision=202086
* - Remove non-existing referenceGabor Kovesdan2009-01-301-2/+1
| | | | | | | | | | | - Fix trailing comma PR: docs/85118 Submitted by: vs MFC after: 3 days Notes: svn path=/head/; revision=187920
* Add missing code needed for the detection of IPSec packet replays. [1]Colin Percival2006-03-221-1/+8
| | | | | | | | | | | Correctly identify the user running opiepasswd(1) when the login name differs from the account name. [2] Security: FreeBSD-SA-06:11.ipsec [1] Security: FreeBSD-SA-06:12.opie [2] Notes: svn path=/head/; revision=156997
* Create /etc/opiekeys with 0600, not 0644Andrey A. Chernov2005-07-292-3/+7
| | | | | | | PR: 84221 Notes: svn path=/head/; revision=148506
* FreeBSD does not use this code, but ftpd_popen() contains a buffer overflow.Kris Kennaway2003-07-131-4/+10
| | | | | | | | | | | We might as well patch it. Submitted by: Przemyslaw Frasunek <venglin@freebsd.lublin.pl> PR: bin/23352 MFC After: The average time before an unpatched Windows 2000 server gets owned Notes: svn path=/head/; revision=117501
* When computing a new seed for an existing user, opienewseed() wouldDag-Erling Smørgrav2003-01-221-5/+4
| | | | | | | | | | | | | | incorrectly compute the length of the numeric portion of the previous seed, causing the new seed to be one character shorter than the old one. This patch has been submitted to the vendor; I'm committing it right away since the file is already off the vendor branch. MFC after: 3 days Notes: svn path=/head/; revision=109680
* Resolve conflicts.Mark Murray2002-03-2119-196/+522
| | | | Notes: svn path=/head/; revision=92914
* This commit was generated by cvs2svn to compensate for changes in r92906,Mark Murray2002-03-2152-640/+1873
|\ | | | | | | | | | | | | which included commits to RCS files with non-trunk default branches. Notes: svn path=/head/; revision=92907
| * Vendor import of OPIE 2.4vendor/opieMark Murray2002-03-2171-859/+2420
| | | | | | | | Notes: svn path=/vendor/opie/dist/; revision=92906
* | Zeroing memset() in opiechallenge() really is not needed because it is theAndrey A. Chernov2002-01-241-2/+3
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | very first thing immediately following opielookup() does being entered, i.e. look at this: int opielookup FUNCTION((opie, principal), struct opie *opie AND char *principal ) { int i; memset(opie, 0, sizeof(struct opie)); ... Notes: svn path=/head/; revision=89766
* | Make the -a flag to opiekey(1) actually work as advertised.Joerg Wunsch2002-01-091-1/+1
| | | | | | | | | | | | | | | | Reviewed by: ache, audit, security MFC after: 1 week Notes: svn path=/head/; revision=89135
* | Repo copied to /usr/src/lib/libopie/Andrey A. Chernov2002-01-031-379/+0
| | | | | | | | Notes: svn path=/head/; revision=88845
* | Add heuristic to detect SSH connection (in the same style as otherAndrey A. Chernov2001-08-291-0/+5
| | | | | | | | | | | | | | | | | | heuristics already here which not supposed to be secure, just helpers). Approved by: security@ silence Notes: svn path=/head/; revision=82495
* | Fix overflow problem when giving a username that is too long.Mark Murray2001-08-201-1/+9
| | | | | | | | | | | | | | Also minor declaration/header fixes while auditing the code. Notes: svn path=/head/; revision=81973
* | Fix uninitialized "force" variable.Andrey A. Chernov2001-08-131-1/+4
| | | | | | | | | | | | | | | | | | PR: 23203 Submitted by: fenner Approved by: markm Notes: svn path=/head/; revision=81596
* | Fix SHA1 hashing.Mark Murray2001-07-142-21/+17
| | | | | | | | Notes: svn path=/head/; revision=79711
* | Usse a better method to get a user's credentials, as uid's may beMark Murray2001-07-141-1/+3
| | | | | | | | | | | | | | | | | | legally duplicated. Requested by: ache Notes: svn path=/head/; revision=79710
* | Eliminate troff(1) warnings that were hiding some useful text.Ruslan Ermilov2001-07-121-1/+1
| | | | | | | | Notes: svn path=/head/; revision=79634
* | Make the similar changes as in our keyinfo, i.e. allow user to get his ownAndrey A. Chernov2001-06-231-10/+16
| | | | | | | | | | | | | | | | sequence and allow root to get everybody's one. Before this change user can't get his own sequence, root required. Notes: svn path=/head/; revision=78644
* | This commit was generated by cvs2svn to compensate for changes in r73569,Kris Kennaway2001-03-052-2/+2
|\| | | | | | | | | | | | | which included commits to RCS files with non-trunk default branches. Notes: svn path=/head/; revision=73570
| * Import patch to fix non-constant format string abuses. This patch wasKris Kennaway2001-03-052-2/+2
| | | | | | | | | | | | | | approved by the vendor and will be present in future releases. Notes: svn path=/vendor/opie/dist/; revision=73569
* | Correct security hole in setproctitle(). We don't compile this code, butKris Kennaway2000-07-101-3/+3
| | | | | | | | | | | | | | having the security hole there makes my skin itch. Notes: svn path=/head/; revision=62877
* | Add some extra functions adapted from OpenBSD, in preparation forKris Kennaway2000-05-151-1/+8
| | | | | | | | | | | | | | OpenSSH OPIE support. Notes: svn path=/head/; revision=60572
* | Allow applications to disable the installation of the atexit() handlerKris Kennaway2000-04-172-2/+13
| | | | | | | | | | | | | | | | | | which cleans up OPIE lockfiles. This is required for pam_opie. Submitted by: Jim Bloom <bloom@acm.org> Notes: svn path=/head/; revision=59300
* | Resolve conflictsKris Kennaway2000-04-1013-28/+78
| | | | | | | | Notes: svn path=/head/; revision=59121
* | This commit was generated by cvs2svn to compensate for changes in r59118,Kris Kennaway2000-04-1056-500/+571
|\| | | | | | | | | | | | | which included commits to RCS files with non-trunk default branches. Notes: svn path=/head/; revision=59119
| * Upgrade to OPIE 2.32, from http://www.inner.net/pub/opie/Kris Kennaway2000-04-1069-529/+631
| | | | | | | | Notes: svn path=/vendor/opie/dist/; revision=59118
* | - Use proper markup for a section header.Chris Costello2000-01-191-5/+7
| | | | | | | | | | | | | | | | | | | | - Replace nonexistent OPIE_PROMPT_MAX with OPIE_CHALLENGE_MAX PR: 16209 Submitted by: Tetsuro Furuya <tfuruya@ppp142197.asahi-net.or.jp> Notes: svn path=/head/; revision=56297
* | sprintf -> snprintfWarner Losh1998-09-091-12/+13
| | | | | | | | Notes: svn path=/head/; revision=39012
* | Fixed printf format errors.Bruce Evans1998-06-301-1/+1
| | | | | | | | Notes: svn path=/head/; revision=37304
* | 'They They' -> 'They'Steve Price1998-06-141-1/+1
| | | | | | | | | | | | | | | | PR: 6912 Submitted by: Stefan Eggers <seggers@semyam.dinoco.de> Notes: svn path=/head/; revision=36982
* | YTK fix.Alexander Langer1997-12-221-2/+2
| | | | | | | | Notes: svn path=/head/; revision=31940
* | Make this manpage reveal its true identity. A diff of theseSteve Price1997-11-271-2/+2
| | | | | | | | | | | | | | | | | | | | changes has also been sent to opie-bugs@inner.net. PR: 5129 Submitted by: jkh Notes: svn path=/head/; revision=31433
* | Move locks from /etc/opielocks to /var/run/opielocks to keepAndrey A. Chernov1997-10-011-1/+1
| | | | | | | | | | | | | | /etc non-writeable as possible Notes: svn path=/head/; revision=30035
* | This commit was generated by cvs2svn to compensate for changes in r29975,Andrey A. Chernov1997-09-291-0/+18
|\| | | | | | | | | | | | | which included commits to RCS files with non-trunk default branches. Notes: svn path=/head/; revision=29976
| * Add setutent.cAndrey A. Chernov1997-09-291-0/+18
| | | | | | | | Notes: svn path=/vendor/opie/dist/; revision=29975
* | Oops, __END_DECLS was in wrong placeAndrey A. Chernov1997-09-291-1/+1
| | | | | | | | Notes: svn path=/head/; revision=29972
* | Not used in this versionAndrey A. Chernov1997-09-291-85/+0
| | | | | | | | Notes: svn path=/head/; revision=29969
* | Moved to libopieAndrey A. Chernov1997-09-291-154/+0
| | | | | | | | Notes: svn path=/head/; revision=29968
* | MergeAndrey A. Chernov1997-09-2910-137/+178
| | | | | | | | Notes: svn path=/head/; revision=29967
generated by cgit v1.2.3 (git 2.25.1) at 2024-09-22 12:42:47 +0000