X-Git-Url: https://granicus.if.org/sourcecode?a=blobdiff_plain;f=ChangeLog;h=743dad7ec463453d70b1162c3efcb36e27b63770;hb=6e2c6ffdf794be862d5489bd37db5e96de616bd9;hp=d73f8930f14ad40d73d61284fd3d1241e0ebbfb3;hpb=7e8aa5429a3fe697482eeffc30ae5252be095170;p=shadow diff --git a/ChangeLog b/ChangeLog index d73f8930..743dad7e 100644 --- a/ChangeLog +++ b/ChangeLog @@ -1,3 +1,513 @@ +2011-11-19 Nicolas François + + * src/faillog.c: The fail_max field is a short, use a short also + for the max argument of setmax / setmax_one. + * src/faillog.c: Fail with an error message when faillog fails to + write to the faillog database. + +2011-11-19 Nicolas François + + * man/gpasswd.1.xml: Document the difference between the -r and -R + options. + +2011-11-19 Nicolas François + + * man/useradd.8.xml, man/groupadd.8.xml, man/usermod.8.xml, + man/groupmod.8.xml: Avoid hardcoded values, and reference instead + the configuration options (e.g. UID_MIN) + * man/groupmod.8.xml, man/usermod.8.xml: Add missing reference to + login.defs + * man/login.defs.d/UID_MAX.xml, man/login.defs.d/SYS_UID_MAX.xml, + man/login.defs.d/GID_MAX.xml, man/login.defs.d/SYS_GID_MAX.xml: + Document the default values. + +2011-11-19 Nicolas François + + * src/gpasswd.c: Change of group password enforces gshadow + password. Set /etc/group password to "x". + +2011-11-16 Peter Vrabec + + * NEWS, src/userdel.c, man/userdel.8.xml: Add option -Z/--selinux-user. + * libmisc/system.c, lib/prototypes.h, libmisc/Makefile.am: Removed + safe_system(). + * lib/selinux.c, po/POTFILES.in, lib/prototypes.h, + lib/Makefile.am: Added helper functions for semanage. + * NEWS, README, src/useradd.c, src/usermod.c, src/userdel.c, + configure.in: Use libsemanage instead of semanage. + +2011-11-16 Peter Vrabec + + * src/Makefile.am: useradd may need the LIBATTR library. + +2011-11-16 Peter Vrabec + + * libmisc/copydir.c: Ignore perm_copy_file() errors with errno set + to ENOTSUP. + +2011-11-16 Nicolas François + + * src/useradd.c: Compilation fix when SHADOWGRP is not enabled. + * libmisc/root_flag.c: Add missing #include + +2011-11-13 Nicolas François + + * po/shadow.pot, man/po/shadow-man-pages.pot: Regenerated. + * po/*.po, man/po/*.po: Updated PO files. + +2011-11-12 Nicolas François + + * src/chage.c, src/chfn.c, src/chgpasswd.c, src/chpasswd.c, + src/chsh.c, src/groupadd.c, src/groupdel.c, src/groupmems.c, + src/groupmod.c, src/newusers.c, src/useradd.c, src/userdel.c, + src/usermod.c: Provide the PAM error + message instead of our own, and log error to syslog. + * src/groupmems.c: Exit with exit rather than fail_exit in usage(). + * src/newusers.c: Check the number of arguments. + * src/newusers.c: Do not create the home directory when it is not + changed. + * src/useradd.c: Set the group password to "!" rather "x" if there + are no gshadow file. + +2011-11-11 Nicolas François + + * src/pwck.c: Removed pw_opened. + * src/pwck.c: optind cannot be greater than argc. + * src/pwck.c: If spw_opened, then is_shadow is implicitly set. + * src/pwck.c: Do not report passwd entry without x password and a + shadow entry in --quiet mode (no interaction with the caller) + * src/pwck.c: Do not check if the last password change is in the + future if the time is set to 0. + +2011-11-11 Nicolas François + + * libmisc/root_flag.c: Drop privileges before changing root. The + --root option should not be used by regular users for suid utils. + * libmisc/root_flag.c: Improve error messages. + +2011-11-11 Nicolas François + + * src/pwck.c: Compile fix for TCB. + +2011-11-11 Nicolas François + + * libmisc/copydir.c: Avoid conflict with glibc. Rename error to + error_acl. + +2011-11-11 Nicolas François + + * man/newusers.8.xml: Document the optional file argument. + * man/newusers.8.xml: Fix the documentation of the inputs' format. + +2011-11-06 Nicolas François + + * man/groupmod.8.xml: Document that the primary group of users may + be changed by groupmod -g. + +2011-11-06 Nicolas François + + * NEWS, src/newusers.c, man/newusers.8.xml: Add --root option. + +2011-11-06 Nicolas François + + * src/vipw.c: Remove unused variable a. + +2011-11-06 Nicolas François + + * man/generate_mans.mak: The xml-config files do not depend on the + Makefile. + +2011-10-31 Nicolas François + + * src/chage.c, src/chgpasswd.c, src/chpasswd.c, src/chsh.c, + src/faillog.c, src/gpasswd.c, src/groupadd.c, src/groupdel.c, + src/groupmems.c, src/groupmod.c, src/grpconv.c, src/grpunconv.c, + src/lastlog.c, src/newusers.c, src/passwd.c, src/pwconv.c, + src/pwunconv.c, src/su.c, src/useradd.c, src/userdel.c, + src/usermod.c, src/vipw.c: Align and sort options. + +2011-10-31 Nicolas François + + * NEWS, src/pwck.c, man/pwck.8.xm, src/grpck.c, man/grpck.8.xml: + Add --root option. + +2011-10-31 Nicolas François + + * man/limits.5.xml, libmisc/limits.c: Sort limit identifiers. + * libmisc/limits.c: Fix support for the K limit identifier. + * libmisc/limits.c: Add missing default limit for L and U. + +2011-10-31 Nicolas François + + * src/pwck.c, man/pwck.8.xml: Add support for long options. + * src/pwck.c, man/pwck.8.xml: Add -h/--help option + * src/grpck.c, man/grpck.8.xml: Add support for long options. + * src/grpck.c, man/grpck.8.xml: Add -h/--help option + +2011-10-30 Nicolas François + + * src/expiry.c, man/expiry.1.xml: Add support for long options. + * src/expiry.c, man/expiry.1.xml: Add -h/--help option + +2011-10-30 Nicolas François + + * src/chfn.c, man/chfn.1.xml: Add support for long options. + * src/chfn.c, man/chfn.1.xml: Add -u/--help option + * NEWS, src/chfn.c, man/chfn.1.xml: Add --root option. + +2011-10-30 Nicolas François + + * NEWS, src/vipw.c, man/vipw.8.xml: Add --root option. + +2011-10-30 Nicolas François + + * NEWS, src/faillog.c, man/faillog.8.xml: Add --root option. + * NEWS, src/lastlog.c, man/lastlog.8.xml: Likewise. + * src/faillog.c: Add Prog variable, and prefix error messages with + Prog rather than "faillog". + * src/lastlog.c: Likewise. + * src/lastlog.c: Split usage in smaller messages. + +2011-10-30 Nicolas François + + * NEWS, src/chage.c, man/chage.1.xml: Add --root option. Open + audit and syslog after the potential chroot. chage's usage split + in smaller messages. + +2011-10-30 Nicolas François + + * src/login.c: re-indent. + * src/login.c: Fix support for sub-logins. + +2011-10-30 Nicolas François + + * src/faillog.c, src/chage.c, src/newusers.c, src/su.c: The getopt + index of long options is not used. + +2011-10-29 Nicolas François + + * lib/prototypes.h, libmisc/Makefile.am, libmisc/root_flag.c, + po/POTFILES.in: Add process_root_flag() to process the --root + option and chroot so that the chroot config is used and changes + are applied to the chroot. + * NEWS, src/useradd.c, man/useradd.8.xml: Add --root option. Open + audit after the potential chroot. + * NEWS, src/userdel.c, man/userdel.8.xml: Add --root option. Open + audit and syslog after the potential chroot. userdel's usage split + in smaller messages. + * NEWS, src/usermod.c, man/usermod.8.xml: Likewise + * NEWS, src/groupadd.c, man/groupadd.8.xml: Add --root option. Open + audit and syslog after the potential chroot. + * src/groupadd.c: Check atexit failures. + * src/groupadd.c: Return E_SUCCESS instead of exit'ing at the end + of main(). + * NEWS, src/groupadd.c, man/groupadd.8.xml: Add --root option. Open + audit and syslog after the potential chroot. + * src/groupmod.c: The getopt index of long options is not used. + * src/groupdel.c: Add process_flags(). + * src/groupdel.c, man/groupdel.8.xml: Add --help option. + * NEWS, src/groupdel.c, man/groupdel.8.xml: Add --root option. Open + audit and syslog after the potential chroot. + * src/groupdel.c: Check atexit failures. + * NEWS, src/pwconv.c, src/pwunconv.c, src/grpconv.c, + src/grpunconv.c, man/pwconv.8.xml: Add --root option. + * src/pwconv.c, src/pwunconv.c, src/grpconv.c, src/grpunconv.c: + Add --help option. + * src/pwconv.c, src/pwunconv.c, src/grpconv.c, src/grpunconv.c: + Add process_flags() and usage(). + * NEWS, src/chpasswd.c, man/chpasswd.8.xml, src/chgpasswd.c, + man/chgpasswd.8.xml: Add --root option. + * src/chpasswd.c, src/chgpasswd.c: The getopt index of long + options is not used. + * NEWS, src/passwd.c, man/passwd.1.xml: Add --root option. + passwd's usage split in smaller messages. + * src/passwd.c: Call sanitize_env() before setting the locales. + * NEWS, src/groupmems.c, man/groupmems.8.xml: Add --root option. + Open syslog after the potential chroot. + * src/groupmems.c: The getopt index of long options is not used. + * NEWS, src/chsh.c, man/chsh.1.xml: Add --root option. + chsh's usage split in smaller messages. + * src/chsh.c: The getopt index of long options is not used. + * NEWS, src/gpasswd.c, man/gpasswd.1.xml: Add --root option. + * src/gpasswd.c: The getopt index of long options is not used. + +2011-10-22 Nicolas François + + * man/ja/Makefile.am, man/fr/Makefile.am, man/ru/Makefile.am, + man/sv/Makefile.am, man/pl/Makefile.am, man/zh_CN/Makefile.am, + man/it/Makefile.am, man/Makefile.am: Include man_nopam in + EXTRA_DIST only when USE_PAM (they are already in man_MANS + otherwise). + +2011-10-22 Nicolas François + + * man/su.1.xml: Document that su -c does not providea controlling + terminal. + +2011-10-18 Nicolas François + + * src/newusers.c: Fix typo. + * src/useradd.c: Likewise. + * lib/nscd.c: Remove unused variable. + * lib/prototypes.h, libmisc/cleanup.c, lib/spawn.c, src/chage.c: + Add splint annotations. + * src/sulogin.c (main): env is only used when USE_PAM is not set. + +2011-10-15 Nicolas François + + * man/login.defs.d/LOGIN_STRING.xml: Fix typo. + +2011-09-18 Nicolas François + + * lib/prototypes, libmisc/basename.c (Basename): Input is a + constant string. + * lib/prototypes.h, lib/spawn.h, lib/spawn.c, src/userdel.c, + lib/nscd.c, lib/Makefile.am: Delete spawn.h. Move from spawn.h to + prototypes.h. + * src/userdel.c: Remove unused variables. + * lib/nscd.c: Remove unused header files. + * lib/nscd.c: Add the program name to error messages. + * lib/nscd.c: Indicate when nscd does not terminate normally (signal). + * lib/spawn.c: Updated header. + * lib/spawn.c: Flush stdout and stderr to avoid inheriting from + ongoing buffers. + * lib/spawn.c: Avoid implicit conversion of pointer to boolean. + * lib/spawn.c: Replace perror by a complete message. + * lib/spawn.c: Continue to wait for the child if another child + terminates. + * lib/prototypes.h: The name field from cleanup_info_mod is a + constant string. (username). + +2011-09-18 Nicolas François + + * libmisc/cleanup.c: Spawn children should no trigger cleanup + actions. Make sure only the parent (initial caller) perform the + cleanup actions. + +2011-09-18 Nicolas François + + * libmisc/salt.c (SHA_salt_rounds): It is statically ensured that + the format fits in rounds_prefix. + * libmisc/loginprompt.c: Likewise. + +2011-09-18 Nicolas François + + * src/grpconv.c: Fail if not called correctly. + * src/grpconv.c: At the end of main, the passwd and shadow files + are locked. No need to check before unlocking. No need to set the + lock as false neither since there cannot be anymore failures. + +2011-09-18 Nicolas François + + * src/chage.c: EPOCH is not needed, it's converted to -1 by + strtoday(). But we need to support "-1" specifically. + * src/chage.c: Fix usage: LOGIN is mandatory. + * src/chage.c: Display disabled expiry or last change as "-1" + instead of 1969-12-31. 1969-12-31 is still supported as input from + the user. + * src/chage.c: Exit cleanly with fail_exit() (lock files were not + removed). + +2011-09-18 Nicolas François + + * src/useradd.c: Remove def_file. It was always set to + USER_DEFAULTS_FILE. + * src/useradd.c: Fix cut&paste issue causing bad warning when + the useradd.default file contains an invalid INACTIVE= value. + * src/useradd.c: Added missing end of line for rename errors. + * src/useradd.c: Added -D synopsis to the usage message. + * src/useradd.c: Do not scale_age(-1), just use -1. + * src/useradd.c: Added FIXME to be fixed later. + * src/useradd.c: Allow -e -1 when there is no shadow file. + * src/useradd.c: Fail, but do not print the usage message when the + -e argument is not valid. + * src/useradd.c: No need to check for oflg since uflg is + already checked. + +2011-09-18 Nicolas François + + * src/su.c: Too much const were added on 2011-08-15. pw in + save_caller_context() is allocated and freed. + * src/su.c: Added missing #endif indication + * src/su.c (save_caller_context): password only needed if + SU_ACCESS and !USE_PAM. + +2011-09-18 Nicolas François + + * src/usermod.c: date_to_str() is always called with negativ set + to "never", remove this argument. + * src/usermod.c: Added missing cast for gr_free argument. + +2011-09-18 Nicolas François + + * src/pwconv.c: Fail if not called correctly. + * src/pwconv.c: At the end of main, the passwd and shadow files + are locked. No need to check before unlocking. + +2011-09-18 Nicolas François + + * src/newusers.c: Initially set the passwd's password to '*' + instead of 'x'. Only when it is confirmed that a shadow entry is + (will be) added, set the passwd's password to 'x'. + * src/newusers.c: An invalid line is an error. A failure needs to + be reported. + +2011-09-18 Nicolas François + + * src/gpasswd.c: Remove log_gpasswd_success_gshadow(). Writing in + gshadow is the last sub-task. + +2011-09-18 Nicolas François + + * src/chsh.c: No needto remove lines tarting with '#' from + /etc/shells. This is already done by getusershell() and these + shell would fail the access(X_OK) test. + +2011-09-18 Nicolas François + + * man/generate_mans.mak: Fix the generation of translated man + pages. xml2po removed the comment from empty headers and the + config was no more inserted. + +2011-09-18 Nicolas François + + * man/chage.1.xml: The LOGIN argument is not optional. + * man/login.defs.d/QUOTAS_ENAB.xml: Document the dependency + between /etc/limits and QUOTAS_ENAB. + +2011-08-20 Nicolas François + + * po/POTFILES.in: Added lib/spawn.c. + +2011-08-20 Jonathan Nieder + + * lib/Makefile.am: Added lib/spawn.c and lib/spawn.h. + * lib/nscd.c, lib/spawn.c, lib/spawn.h: It is not possible to + differentiate between an nscd failure, and a failure to execute + due to no nscd with posix_spawn. Use our own run_command routine. + * src/userdel.c: Use run_command() + +2011-08-15 Nicolas François + + * src/groupmod.c: Ignore return value from snprintf. + * src/groupmod.c: Add static qualifier to the cleanup structures. + * src/groupmod.c: Check atexit failures. + +2011-08-15 Nicolas François + + * src/usermod.c: Do not assign static to NULL. + * src/usermod.c (date_to_str): buf needs to be unique (e.g. + independent from negativ), and is an out buffer. + * src/usermod.c: Ignore return value from snprintf, and force + nul-termination of buffer. + * src/usermod.c: Improve memory management. + * src/usermod.c: An audit bloc was not reachable, moved above on + success to move the home directory. + * src/usermod.c: Ignore close() return value for the mailbox + (opened read only). + +2011-08-15 Nicolas François + + * src/su.c: Added const modifiers. + * lib/prototypes: Synchronize splint annotations. + +2011-08-14 Nicolas François + + * src/su.c: Add splint annotations. + * src/su.c: Set caller_on_console as boolean. + * src/su.c: Ignore return value from fputs (usage) / puts (prompt). + * src/su.c: Improved memory management. + +2011-08-14 Nicolas François + + * src/chgpasswd.c, src/chpasswd.c, src/newusers.c: Replace cflg by + a test on crypt_method. + +2011-08-14 Nicolas François + + * libmisc/chowndir.c: Add splint annotations. + * src/chgpasswd.c: Likewise. + * src/chpasswd.c: Likewise. + * src/newusers.c: Likewise. + * libmisc/salt.c, lib/prototypes.h (crypt_make_salt): Likewise. + +2011-08-14 Nicolas François + + * lib/gshadow_.h: Fix typo in comment. + +2011-08-14 Nicolas François + + * lib/prototypes.h, libmisc/getgr_nam_gid.c: getgr_nam_gid() + returns an allocated structure. + +2011-08-14 Nicolas François + + * src/su.c: Add annotations to indicate that su_failure() does + not return. + +2011-07-30 Nicolas François + + * lib/commonio.c: Display PID as unsigned long. + +2011-07-30 Nicolas François + + * src/useradd.c: Remove unused Zflg. + +2011-07-30 Nicolas François + + * src/chgpasswd.c: Fix typo sp -> sg. sg_namp -> sg_name + * src/chgpasswd.c: Always update the group file when SHADOWGRP is + not enabled. + +2011-07-30 Nicolas François + + * src/newgrp.c: Fix typo in notreached annotation. + +2011-07-30 Nicolas François + + * src/usermod.c: Add annotations to indicate that fail_exit() does + not return. + * src/usermod.c: Fix typo in notreached annotation. + +2011-07-30 Nicolas François + + * libmisc/find_new_uid.c: free (used_uids) on return. + * libmisc/find_new_gid.c: free (used_gids) on return. + +2011-07-28 Nicolas François + + * lib/commonio.c: Fix NIS commit from 2011-07-14. + +2011-07-28 Nicolas François + + * NEWS, src/chpasswd.c: Create a shadow entry if the password is + set to 'x' in passwd and there are no entry in shadow for the + user. + * NEWS, src/chgpasswd.c: Create a gshadow entry if the password is + set to 'x' in group and there are no entry in gshadow for the + group. + +2011-07-28 Nicolas François + + * src/pwunconv.c: Exit after printing usage when arguments or + options are provided. + * src/pwunconv.c: Re-indent. + * src/pwunconv.c: Open the shadow file read only. + * src/grpunconv.c: Exit after printing usage when arguments or + options are provided. + * src/grpunconv.c: Open the gshadow file read only. + +2011-07-28 Nicolas François + + * src/chgpasswd.c: Fix typo. + +2011-07-23 Nicolas François + + * NEWS, src/login.c: Do not log in utmp / utmpx / wtmp when PAM is + enabled. This is already done by pam_lastlog. Note that + pam_lastlog can only log the parent PID, not the PID of the + process forked by login. + 2011-07-23 Nicolas François * src/chpasswd.c: Add annotations to indicate that usage() does @@ -115,7 +625,7 @@ * src/groupadd.c: Fix typo in comment. * src/userdel.c: Fix typo from 2011-06-04. Report failure on the mailfile instead of user_home. - * lib/fields.c: Fixed typo from 2010-02-15. field insteadof cp + * lib/fields.c: Fixed typo from 2010-02-15. field instead of cp ought to be checked. * src/vipw.c: Use Prog instead of progname. This is needed since Prog is used in the library. @@ -1598,7 +2108,7 @@ 2009-05-18 Nicolas François - * man/userdel.8.xml: Document tat -f may force teh deletion of a + * man/userdel.8.xml: Document that -f may force the deletion of a busy user. 2009-05-18 Nicolas François @@ -3922,7 +4432,7 @@ src/groupmod.c, src/grpck.c, src/grpconv.c, src/grpunconv.c, src/newusers.c, src/passwd.c, src/pwck.c, src/pwconv.c, src/pwunconv.c, src/useradd.c, src/userdel.c, src/usermod.c: - Harmonize the erro & syslog messages in case of failure of the + Harmonize the error & syslog messages in case of failure of the *_lock(), *_open(), *_close(), *_unlock(), *_remove() functions. * src/chgpasswd.c, src/chpasswd.c, src/usermod.c: Avoid capitalized messages. @@ -5772,7 +6282,7 @@ 2008-02-26 Nicolas François * src/gpasswd.c: When a password is moved to the gshadow file, use - "x" instead of "x" to indicate that the password is shadowed + "x" instead of "!" to indicate that the password is shadowed (consistency with grpconv). 2008-02-26 Nicolas François