Serge Hallyn [Wed, 9 May 2018 02:37:55 +0000 (21:37 -0500)]
usermod: prevent a segv
in the case where prefix does not exist.
Signed-off-by: Serge Hallyn <shallyn@cisco.com>
fariouche [Wed, 9 May 2018 02:17:46 +0000 (21:17 -0500)]
Fix usermod crash
Return newly allocated pointers when the caller will free them.
Closes #110
Serge Hallyn [Sun, 29 Apr 2018 16:41:41 +0000 (11:41 -0500)]
release 4.6
Signed-off-by: Serge Hallyn <shallyn@cisco.com>
Serge Hallyn [Fri, 30 Mar 2018 06:10:51 +0000 (23:10 -0700)]
Merge pull request #103 from HarmtH/be-predictable
su.c: be more predictable
Serge Hallyn [Fri, 30 Mar 2018 05:36:28 +0000 (22:36 -0700)]
Merge pull request #21 from fariouche/master
Add --prefix argument
Serge Hallyn [Thu, 29 Mar 2018 22:45:54 +0000 (15:45 -0700)]
Merge pull request #102 from HarmtH/fix-dashdash-slurp
su.c: fix '--' slurping
fariouche [Wed, 28 Mar 2018 19:14:12 +0000 (21:14 +0200)]
add --prefix option: some fixes + fixed pwd.lock file location
fariouche [Wed, 28 Mar 2018 19:11:36 +0000 (21:11 +0200)]
Merge remote-tracking branch 'upstream/master'
Harm te Hennepe [Mon, 26 Mar 2018 22:45:03 +0000 (00:45 +0200)]
su.c: be more predictable
Always parse first non-option as username.
Harm te Hennepe [Mon, 26 Mar 2018 20:37:56 +0000 (22:37 +0200)]
su.c: fix '--' slurping
All arguments are already reordered and parsed by getopt_long since
e663c69, so manual '--' slurping is wrong.
Closes #101
Serge Hallyn [Sun, 25 Mar 2018 14:18:22 +0000 (09:18 -0500)]
pwconv and grpconv: rewind after deleting an entry
Otherwise our spw_next() will cause us to skip an entry.
Ideally we'd be able to do an swp_rewind(1), but I don't
see a helper for this.
Closes #60
Signed-off-by: Serge Hallyn <shallyn@cisco.com>
Serge Hallyn [Sun, 25 Mar 2018 04:44:09 +0000 (23:44 -0500)]
userdel: fix wrong variable name in tcb case
Found in mandriva distro patch, and with a test build.
Signed-off-by: Serge Hallyn <shallyn@cisco.com>
Serge Hallyn [Sun, 25 Mar 2018 04:41:23 +0000 (23:41 -0500)]
src/Makefile.am: tcb fixes from mandriva
1. suidubins -= was breaking build with WITH_TCB.
2. stick libtcb at end of ldlibs list.
Signed-off-by: Serge Hallyn <shallyn@cisco.com>
Serge Hallyn [Sun, 25 Mar 2018 01:29:48 +0000 (20:29 -0500)]
pwck.c: do not pass O_CREAT
It causes a crash later when we try to close files.
Closes #96
Signed-off-by: Serge Hallyn <shallyn@cisco.com>
Serge Hallyn [Sat, 24 Mar 2018 21:27:20 +0000 (16:27 -0500)]
src/Makefile.am: drop duplicate inclusion of chage
Closes #80
Signed-off-by: Serge Hallyn <shallyn@cisco.com>
Serge Hallyn [Sat, 24 Mar 2018 20:54:51 +0000 (15:54 -0500)]
Merge pull request #98 from jsoref/spelling
Spelling
Serge Hallyn [Sat, 24 Mar 2018 20:54:22 +0000 (15:54 -0500)]
Merge pull request #100 from akrosikam/patch-1
Complete translation to Norwegian bokmål
akrosikam [Mon, 12 Mar 2018 07:39:16 +0000 (08:39 +0100)]
Complete translation to Norwegian bokmål
Translate remaining strings to Norwegian bokmål (nb). Also, cure previous translation of excessive anglicism and apply a more consistent use of actual Norwegian syntax.
Serge Hallyn [Mon, 19 Feb 2018 20:45:13 +0000 (14:45 -0600)]
Merge pull request #93 from rahul1809/master
Double freeing up pointers , Causing Segmentation fault
Serge Hallyn [Fri, 16 Feb 2018 14:40:39 +0000 (08:40 -0600)]
Merge pull request #97 from cyphar/newgidmap-secure-setgroups
newgidmap: enforce setgroups=deny if self-mapping a group
Aleksa Sarai [Thu, 15 Feb 2018 14:37:42 +0000 (01:37 +1100)]
README: add Aleksa Sarai to author list
Signed-off-by: Aleksa Sarai <asarai@suse.de>
Aleksa Sarai [Thu, 15 Feb 2018 12:49:40 +0000 (23:49 +1100)]
newgidmap: enforce setgroups=deny if self-mapping a group
This is necessary to match the kernel-side policy of "self-mapping in a
user namespace is fine, but you cannot drop groups" -- a policy that was
created in order to stop user namespaces from allowing trivial privilege
escalation by dropping supplementary groups that were "blacklisted" from
certain paths.
This is the simplest fix for the underlying issue, and effectively makes
it so that unless a user has a valid mapping set in /etc/subgid (which
only administrators can modify) -- and they are currently trying to use
that mapping -- then /proc/$pid/setgroups will be set to deny. This
workaround is only partial, because ideally it should be possible to set
an "allow_setgroups" or "deny_setgroups" flag in /etc/subgid to allow
administrators to further restrict newgidmap(1).
We also don't write anything in the "allow" case because "allow" is the
default, and users may have already written "deny" even if they
technically are allowed to use setgroups. And we don't write anything if
the setgroups policy is already "deny".
Ref: https://bugs.launchpad.net/ubuntu/+source/shadow/+bug/
1729357
Fixes: CVE-2018-7169
Reported-by: Craig Furman <craig.furman89@gmail.com>
Signed-off-by: Aleksa Sarai <asarai@suse.de>
fariouche [Tue, 23 Jan 2018 22:10:19 +0000 (23:10 +0100)]
upstream merge
rahul [Mon, 22 Jan 2018 11:37:27 +0000 (17:07 +0530)]
indentation fix
rahul [Mon, 22 Jan 2018 11:35:52 +0000 (17:05 +0530)]
added a check to avoid freeing null pointer
Serge Hallyn [Fri, 19 Jan 2018 04:42:12 +0000 (22:42 -0600)]
Merge pull request #92 from IronicBadger/master
Fixes mispelling of MAX_DAYS help text
Alex Kretzschmar [Wed, 17 Jan 2018 12:21:48 +0000 (12:21 +0000)]
Fixes mispelling of MAX_DAYS help text
Serge Hallyn [Tue, 9 Jan 2018 04:57:43 +0000 (22:57 -0600)]
Merge pull request #90 from t8m/userdel-chroot
Make userdel to work with -R.
Serge Hallyn [Tue, 9 Jan 2018 04:56:23 +0000 (22:56 -0600)]
Merge pull request #91 from kloeri/master
Add note to passwd(1) that --maxdays -1 disables the setting.
Bryan Østergaard [Wed, 3 Jan 2018 17:32:44 +0000 (18:32 +0100)]
Add note to passwd(1) that --maxdays -1 disables the setting.
This note already exists in chage(1).
Tomas Mraz [Thu, 21 Dec 2017 08:12:58 +0000 (09:12 +0100)]
Make userdel to work with -R.
The userdel checks for users with getpwnam() which might not work
properly in chroot. Check for the user's presence in local files only.
Josh Soref [Sun, 22 Oct 2017 21:37:53 +0000 (21:37 +0000)]
spelling: within
Josh Soref [Sun, 22 Oct 2017 21:33:42 +0000 (21:33 +0000)]
spelling: various
Josh Soref [Sun, 22 Oct 2017 21:31:09 +0000 (21:31 +0000)]
spelling: using
Josh Soref [Sun, 22 Oct 2017 21:31:35 +0000 (21:31 +0000)]
spelling: username
Josh Soref [Sun, 22 Oct 2017 21:30:30 +0000 (21:30 +0000)]
spelling: unrecognized
Josh Soref [Sun, 22 Oct 2017 21:28:58 +0000 (21:28 +0000)]
spelling: typical
Josh Soref [Sun, 22 Oct 2017 21:24:49 +0000 (21:24 +0000)]
spelling: thanks
Josh Soref [Sun, 22 Oct 2017 21:23:13 +0000 (21:23 +0000)]
spelling: success
Josh Soref [Sun, 22 Oct 2017 21:23:22 +0000 (21:23 +0000)]
spelling: succeeded
Josh Soref [Sun, 22 Oct 2017 21:23:03 +0000 (21:23 +0000)]
spelling: submitting
Josh Soref [Sun, 22 Oct 2017 21:16:50 +0000 (21:16 +0000)]
spelling: spotted
Josh Soref [Sun, 22 Oct 2017 21:16:07 +0000 (21:16 +0000)]
spelling: spectacularly
Josh Soref [Sun, 22 Oct 2017 21:14:37 +0000 (21:14 +0000)]
spelling: similar
Josh Soref [Sun, 22 Oct 2017 21:13:32 +0000 (21:13 +0000)]
spelling: session
Josh Soref [Sun, 22 Oct 2017 21:13:23 +0000 (21:13 +0000)]
spelling: security
Josh Soref [Sun, 22 Oct 2017 21:11:59 +0000 (21:11 +0000)]
spelling: rewritten
Josh Soref [Sun, 22 Oct 2017 21:12:29 +0000 (21:12 +0000)]
spelling: remove
Josh Soref [Sun, 22 Oct 2017 21:06:22 +0000 (21:06 +0000)]
spelling: really
Josh Soref [Sun, 22 Oct 2017 21:05:52 +0000 (21:05 +0000)]
spelling: queried
Josh Soref [Sun, 22 Oct 2017 21:04:46 +0000 (21:04 +0000)]
spelling: provided
Josh Soref [Sun, 22 Oct 2017 21:15:45 +0000 (21:15 +0000)]
spelling: poor
Josh Soref [Sun, 22 Oct 2017 21:03:28 +0000 (21:03 +0000)]
spelling: password
Josh Soref [Sun, 22 Oct 2017 21:03:00 +0000 (21:03 +0000)]
spelling: partially
Josh Soref [Sun, 22 Oct 2017 21:01:25 +0000 (21:01 +0000)]
spelling: overridden
Josh Soref [Sun, 22 Oct 2017 21:00:52 +0000 (21:00 +0000)]
spelling: output
Josh Soref [Sun, 22 Oct 2017 20:58:52 +0000 (20:58 +0000)]
spelling: originally
Josh Soref [Sun, 22 Oct 2017 20:58:25 +0000 (20:58 +0000)]
spelling: options
Josh Soref [Sun, 22 Oct 2017 20:54:42 +0000 (20:54 +0000)]
spelling: nonexistent
Josh Soref [Sun, 22 Oct 2017 20:48:57 +0000 (20:48 +0000)]
spelling: negative
Josh Soref [Sun, 22 Oct 2017 20:45:06 +0000 (20:45 +0000)]
spelling: necessary
Josh Soref [Sun, 22 Oct 2017 20:41:18 +0000 (20:41 +0000)]
spelling: multiple
Josh Soref [Sun, 22 Oct 2017 20:39:14 +0000 (20:39 +0000)]
spelling: moment
Josh Soref [Sun, 22 Oct 2017 20:38:52 +0000 (20:38 +0000)]
spelling: modification
Josh Soref [Sun, 22 Oct 2017 20:37:31 +0000 (20:37 +0000)]
spelling: missing
Josh Soref [Sun, 22 Oct 2017 20:34:22 +0000 (20:34 +0000)]
spelling: message
Josh Soref [Sun, 22 Oct 2017 20:33:55 +0000 (20:33 +0000)]
spelling: maximum
Josh Soref [Sun, 22 Oct 2017 20:33:00 +0000 (20:33 +0000)]
spelling: match
Josh Soref [Sun, 22 Oct 2017 20:32:45 +0000 (20:32 +0000)]
spelling: mapping
Josh Soref [Sun, 22 Oct 2017 20:30:00 +0000 (20:30 +0000)]
spelling: many
Josh Soref [Sun, 22 Oct 2017 20:28:57 +0000 (20:28 +0000)]
spelling: logout
Josh Soref [Sun, 22 Oct 2017 20:28:46 +0000 (20:28 +0000)]
spelling: locally
Josh Soref [Sun, 22 Oct 2017 20:24:32 +0000 (20:24 +0000)]
spelling: interactive
Josh Soref [Sun, 22 Oct 2017 20:22:44 +0000 (20:22 +0000)]
spelling: inserted
Josh Soref [Sun, 22 Oct 2017 20:11:27 +0000 (20:11 +0000)]
spelling: improvements
Josh Soref [Sun, 22 Oct 2017 19:47:52 +0000 (19:47 +0000)]
spelling: if the
Josh Soref [Sun, 22 Oct 2017 20:52:44 +0000 (20:52 +0000)]
spelling: if
Josh Soref [Sun, 22 Oct 2017 19:47:08 +0000 (19:47 +0000)]
spelling: gshadow
Josh Soref [Sun, 22 Oct 2017 19:33:50 +0000 (19:33 +0000)]
spelling: groupmod
Josh Soref [Sun, 22 Oct 2017 19:17:02 +0000 (19:17 +0000)]
spelling: gratuitously
Josh Soref [Sun, 22 Oct 2017 19:16:30 +0000 (19:16 +0000)]
spelling: getxxyyy
Josh Soref [Sun, 22 Oct 2017 19:13:08 +0000 (19:13 +0000)]
spelling: forgotten
Josh Soref [Sun, 22 Oct 2017 19:11:52 +0000 (19:11 +0000)]
spelling: faillog
Josh Soref [Sun, 22 Oct 2017 19:11:20 +0000 (19:11 +0000)]
spelling: equivalent
Josh Soref [Sun, 22 Oct 2017 19:10:52 +0000 (19:10 +0000)]
spelling: enviroment
Josh Soref [Sun, 22 Oct 2017 19:10:41 +0000 (19:10 +0000)]
spelling: entered
Josh Soref [Sun, 22 Oct 2017 19:08:39 +0000 (19:08 +0000)]
spelling: else
Josh Soref [Sun, 22 Oct 2017 18:44:58 +0000 (18:44 +0000)]
spelling: display its
Josh Soref [Sun, 22 Oct 2017 18:43:40 +0000 (18:43 +0000)]
spelling: displaying
Josh Soref [Sun, 22 Oct 2017 18:43:48 +0000 (18:43 +0000)]
spelling: displayed
Josh Soref [Sun, 22 Oct 2017 18:40:47 +0000 (18:40 +0000)]
spelling: devices
Josh Soref [Sun, 22 Oct 2017 18:34:35 +0000 (18:34 +0000)]
spelling: default
Josh Soref [Sun, 22 Oct 2017 18:33:13 +0000 (18:33 +0000)]
spelling: cumulative
Josh Soref [Sun, 22 Oct 2017 08:23:57 +0000 (08:23 +0000)]
spelling: created
Josh Soref [Sun, 22 Oct 2017 18:32:19 +0000 (18:32 +0000)]
spelling: conversation
Josh Soref [Sun, 22 Oct 2017 21:07:23 +0000 (21:07 +0000)]
spelling: constraints
Josh Soref [Sun, 22 Oct 2017 18:31:51 +0000 (18:31 +0000)]
spelling: configuration
Josh Soref [Sun, 22 Oct 2017 18:31:24 +0000 (18:31 +0000)]
spelling: conditionally
Josh Soref [Sun, 22 Oct 2017 18:25:35 +0000 (18:25 +0000)]
spelling: comment
Josh Soref [Sun, 22 Oct 2017 18:25:46 +0000 (18:25 +0000)]
spelling: command