pam: modules/pam_console/50-default.perms, modules/pam_console/con...
baggins
baggins at pld-linux.org
Fri Sep 14 18:41:55 CEST 2007
Author: baggins Date: Fri Sep 14 16:41:55 2007 GMT
Module: pam Tag: HEAD
---- Log message:
- updates from upstream (FC)
---- Files affected:
pam/modules/pam_console:
50-default.perms (1.1 -> 1.2) , console.handlers (1.1 -> 1.2) , console.perms (1.1 -> 1.2) , pam_console.c (1.8 -> 1.9)
---- Diffs:
================================================================
Index: pam/modules/pam_console/50-default.perms
diff -u pam/modules/pam_console/50-default.perms:1.1 pam/modules/pam_console/50-default.perms:1.2
--- pam/modules/pam_console/50-default.perms:1.1 Mon Feb 5 00:11:52 2007
+++ pam/modules/pam_console/50-default.perms Fri Sep 14 18:41:49 2007
@@ -26,6 +26,7 @@
<raw1394>=/dev/raw1394
<irda>=/dev/ircomm*
<dvb>=/dev/dvb/adapter*/*
+<firewire>=/dev/iidc* /dev/vendorfw* /dev/avc*
# permission definitions
<console> 0660 <floppy> 0660 root.floppy
================================================================
Index: pam/modules/pam_console/console.handlers
diff -u pam/modules/pam_console/console.handlers:1.1 pam/modules/pam_console/console.handlers:1.2
--- pam/modules/pam_console/console.handlers:1.1 Mon Feb 5 00:11:52 2007
+++ pam/modules/pam_console/console.handlers Fri Sep 14 18:41:49 2007
@@ -14,6 +14,6 @@
# echo lock wait Locking console for user on tty
# touch unlock wait /var/run/console-unlocked
-console consoledevs tty[0-9][0-9]* vc/[0-9][0-9]* :[0-9]\.[0-9] :[0-9]
+console consoledevs tty[0-9][0-9]* vc/[0-9][0-9]* :[0-9]+\.[0-9]+ :[0-9]+
/sbin/pam_console_apply lock logfail wait -t tty -s
/sbin/pam_console_apply unlock logfail wait -r -t tty -s
================================================================
Index: pam/modules/pam_console/console.perms
diff -u pam/modules/pam_console/console.perms:1.1 pam/modules/pam_console/console.perms:1.2
--- pam/modules/pam_console/console.perms:1.1 Mon Feb 5 00:11:52 2007
+++ pam/modules/pam_console/console.perms Fri Sep 14 18:41:50 2007
@@ -18,8 +18,8 @@
# Rather a new file in the console.perms.d directory should be created.
# file classes -- these are regular expressions
-<console>=tty[0-9][0-9]* vc/[0-9][0-9]* :[0-9]\.[0-9] :[0-9]
-<xconsole>=:[0-9]\.[0-9] :[0-9]
+<console>=tty[0-9][0-9]* vc/[0-9][0-9]* :[0-9]+\.[0-9]+ :[0-9]+
+<xconsole>=:[0-9]+\.[0-9]+ :[0-9]+
# device classes -- see console.perms.d/50-default.perms
# permission definitions -- see console.perms.d/50-default.perms
================================================================
Index: pam/modules/pam_console/pam_console.c
diff -u pam/modules/pam_console/pam_console.c:1.8 pam/modules/pam_console/pam_console.c:1.9
--- pam/modules/pam_console/pam_console.c:1.8 Mon Feb 5 16:15:55 2007
+++ pam/modules/pam_console/pam_console.c Fri Sep 14 18:41:50 2007
@@ -19,7 +19,7 @@
*
* /var/run/console/<username> is used for reference counting
* and to make console authentication easy -- if it exists, then
- * <username> has console access.
+ * <username> is logged on console.
*
* A system startup script should remove /var/run/console/console.lock
* and everything in /var/run/console/
@@ -561,7 +561,7 @@
*/
int fd;
int count = 0;
- int err;
+ int err = PAM_SUCCESS;
int delete_consolelock = 0;
const char *username = NULL, *user_prompt;
char *lockfile = NULL;
@@ -606,7 +606,8 @@
_pam_log(pamh, LOG_ERR, FALSE,
"\"impossible\" fstat error on %s", consolelock);
close(fd);
- err = PAM_SESSION_ERR; goto return_error;
+ err = PAM_SESSION_ERR;
+ goto decrement;
}
consoleuser = _do_malloc(st.st_size+1);
if (st.st_size) {
@@ -615,7 +616,7 @@
"\"impossible\" read error on %s", consolelock);
err = PAM_SESSION_ERR;
close(fd);
- goto return_error;
+ goto decrement;
}
consoleuser[st.st_size] = '\0';
}
@@ -628,23 +629,19 @@
*/
console_run_handlers(pamh, FALSE, username, tty);
}
- } else {
- /* didn't open file */
- err = PAM_SESSION_ERR;
- goto return_error;
}
}
+decrement:
count = use_count(pamh, lockfile, -1, 1);
if (count < 1 && delete_consolelock) {
if (unlink(consolelock)) {
_pam_log(pamh, LOG_ERR, FALSE,
"\"impossible\" unlink error on %s", consolelock);
- err = PAM_SESSION_ERR; goto return_error;
+ err = PAM_SESSION_ERR;
}
}
- err = PAM_SUCCESS;
return_error:
if (lockfile) free(lockfile);
if (consoleuser) free (consoleuser);
================================================================
---- CVS-web:
http://cvs.pld-linux.org/cgi-bin/cvsweb.cgi/pam/modules/pam_console/50-default.perms?r1=1.1&r2=1.2&f=u
http://cvs.pld-linux.org/cgi-bin/cvsweb.cgi/pam/modules/pam_console/console.handlers?r1=1.1&r2=1.2&f=u
http://cvs.pld-linux.org/cgi-bin/cvsweb.cgi/pam/modules/pam_console/console.perms?r1=1.1&r2=1.2&f=u
http://cvs.pld-linux.org/cgi-bin/cvsweb.cgi/pam/modules/pam_console/pam_console.c?r1=1.8&r2=1.9&f=u
More information about the pld-cvs-commit
mailing list