~roguescholar/pam/+git/upstream:ldv/sigchld

Branch merges

Related source package recipes

No recipes using this branch. (?)

Create packaging recipe

Related snap packages

Related charm recipes

367bcfa... by Dmitry V. Levin on 2022-07-16

pam_namespace: make sure the SIGCHLD handler is not reset too early

* modules/pam_namespace/pam_namespace.c (inst_init): Make sure
the SIGCHLD handler is not reset too early by moving the sigaction
call right before the fork call.

e91b8cd... by Dmitry V. Levin on 2022-07-16

pam_mkhomedir: make sure the SIGCHLD handler is not reset too early

* modules/pam_mkhomedir/pam_mkhomedir.c (create_homedir): Make sure
the SIGCHLD handler is not reset too early by moving the sigaction
call right before the fork call.

6a55b0c... by dengbo <email address hidden> on 2022-07-06

pam_xauth: add SIGCHLD protection handle

* modules/pam_xauth/pam_xauth.c (run_coprocess): Save the SIGCHLD
handler and reset it to the default before calling fork, restore the
handler after waitpid returns.

Resolves: https://github.com/linux-pam/linux-pam/pull/469

bd86fff... by dengbo <email address hidden> on 2022-07-06

pam_exec: add SIGCHLD protection handle

* modules/pam_exec/pam_exec.c (call_exec): Save the SIGCHLD handler and
reset it to the default before calling fork, restore the handler after
waitpid returns.

Resolves: https://github.com/linux-pam/linux-pam/issues/405

1180bde... by Iker Pedrosa <email address hidden> on 2022-07-08

pam_pwhistory: document config load from file

* modules/pam_pwhistory/pam_pwhistory.8.xml: Add new option to select
configuration file to read.
* modules/pam_pwhistory/pwhistory.conf.5.xml: Document configuration
options for the file.
* modules/pam_pwhistory/Makefile.am (dist_man_MANS): Add pwhistory.conf.5.
(XMLS): Add pwhistory.conf.5.xml.

Signed-off-by: Iker Pedrosa <email address hidden>

ba2f6dd... by Iker Pedrosa <email address hidden> on 2022-07-08

pam_pwhistory: load config from file

* modules/pam_pwhistory/pam_pwhistory.c: Load config from file and
provide new conf option to select the file.
* modules/pam_pwhistory/pwhistory_config.c: Parse config from file and
load to options structure.
* modules/pam_pwhistory/pwhistory_config.h: Move options_t structure and
define parse_config_file().
* modules/pam_pwhistory/Makefile.am (noinst_HEADERS): Add pwhistory_config.h.
(pam_pwhistory_la_SOURCES): Add pwhistory_config.c.
(dist_secureconf_DATA): Add pwhistory.conf.
* modules/pam_pwhistory/pwhistory.conf: New configuration file.

Resolves: https://bugzilla.redhat.com/show_bug.cgi?id=2068461

Signed-off-by: Iker Pedrosa <email address hidden>

37c8403... by Iker Pedrosa <email address hidden> on 2022-07-05

libpam: improve pam_modutil_search_key() doc

* libpam/include/security/pam_modutil.h: Improve the
pam_modutil_search_key() interface documentation.

Signed-off-by: Iker Pedrosa <email address hidden>

37b47c0... by Dmitry V. Levin on 2022-07-15

_pam_add_handler: make sure struct handler is properly initialized on error path

* libpam/pam_handlers.c (_pam_add_handler): Use calloc instead of malloc
for struct handler allocation to avoid returning garbage in some fields
of the structure on error path.

Resolves: https://github.com/linux-pam/linux-pam/issues/475

31645f4... by Dmitry V. Levin on 2022-07-01

.github: switch whitespace-errors job to ubuntu-latest

While ubuntu-latest in ci is not necessarily the latest version of the
OS available in ci, whitespace-errors job should be agnostic to the
version being used, so use the default one.

* .github/workflows/ci.yml (whitespace-errors) <runs-on>: Change from
ubuntu-20.04 to ubuntu-latest.

94f0f5e... by Shreenidhi Shedi on 2022-07-01

faillock: add support to print login failure info in legacy format

pam_tally2 had a simple and minimalstic output to show login failure
info, new output of faillock makes the output look a bit complex and
doesn't show failure counts in a straight manner.

This patch fixes the above issue by adding "--legacy-output" flag to
faillock which makes it possible to get output in pam_tally2 style.

Signed-off-by: Shreenidhi Shedi <email address hidden>