Lines Matching +full:build +full:- +full:linux +full:- +full:gcc
1 User-Visible pam-krb5 Changes
3 pam-krb5 4.11 (2021-10-17)
13 Linux systems when --prefix is set to /usr and instead document that
14 --libdir will probably need to be set explicitly. The previous logic
18 Update to rra-c-util 10.0:
23 pam-krb5 4.10 (2021-03-20)
25 When re-retrieving the authenticated principal from the current cache,
31 Update to rra-c-util 9.0:
40 * Fix warnings with GCC 10.
42 pam-krb5 4.9 (2020-03-30)
47 (CVE-2020-10595)
65 Fix an edge-case memory leak in pam_chauthtok when prompting for a new
71 Update to rra-c-util 8.2:
75 * Reformat all C source using clang-format 10.
77 * Fix misplaced va_end in the pam-util putil_log_failure function.
78 * Skip checking for krb5-config on the path if a prefix was given.
79 * Add SPDX-License-Identifier headers to all substantial source files.
88 * Add SPDX-License-Identifier headers to all substantial source files.
90 pam-krb5 4.8 (2017-12-30)
111 parameters in krb5.conf. Thanks, Matthew Gabeler-Lee. (Debian
114 Compile cleanly under GCC 7 and Clang warnings and Clang's static
120 Update to rra-c-util 7.0:
122 * Fix new warnings in GCC 7.
123 * Support a warning build under Clang.
124 * Avoid zero-length allocations in reallocarray and vector.
125 * Probe for warning flags instead of hard-coding a list.
137 * Avoid zero-length allocations in breallocarray.
141 * Display verbose test results with -v or C_TAP_VERBOSE.
144 pam-krb5 4.7 (2014-12-25)
148 this is set, pam-krb5 will not convert full principal names to local
160 since this error is returned by a Heimdal 1.6-rc2 KDC for incorrect
166 Update to rra-c-util 5.6:
168 * Suppress warnings from Kerberos headers in non-system paths.
171 * Pass --deps to krb5-config in the non-reduced-dependencies case.
189 * The full test executable path can now be passed to runtests -o.
194 pam-krb5 4.6 (2012-06-02)
231 but Heimdal does. pam-krb5 previously unconditionally added a colon
264 Update to rra-c-util 4.4:
266 * Replacement strndup now works with non-nul-terminated strings.
268 * Add -D_FORTIFY_SOURCE=2 to the make warnings flags.
269 * Use --deps flag to krb5-config by default.
270 * Suppress __alloc_size__ attribute with older versions of gcc.
271 * Suppress attribute warnings for non-gcc compilers.
276 * Only use feature-test macros when requested or built with gcc -ansi.
278 * Drop is_double from the C TAP library to avoid requiring -lm.
281 pam-krb5 4.5 (2011-12-24)
298 The location of the temporary root-owned ticket cache created during
302 cache directory so that pam-krb5 can continue working when /tmp is
324 Restructure the code to work with OpenPAM's default PAM build
339 better-structured code from rra-c-util 4.0.
341 Avoid krb5-config and use manual library probing if --with-krb5-lib or
342 --with-krb5-include were given to configure. This avoids having to
343 point configure at a nonexistent krb5-config to override its results.
345 Use PATH_KRB5_CONFIG instead of KRB5_CONFIG to locate krb5-config in
353 Update to rra-c-util 4.0:
355 * Add notices to all files copied over from rra-c-util.
358 * Update warning flags for make warnings for GCC 4.6.1.
361 * Improve stripping of /usr/include from krb5-config results.
367 * Fix runtests to honor -s even if BUILD and -b aren't given.
371 pam-krb5 4.4 (2010-12-31)
389 Update to rra-c-util 3.0:
392 * Look for krb5-config in /usr/kerberos/bin for Red Hat systems.
395 pam-krb5 4.3 (2010-06-09)
411 pam-krb5 4.2 (2009-11-25)
418 it will actually compile on non-Linux platforms.
420 pam-krb5 4.1 (2009-11-20)
426 on some other Linux PAM implementations. Thanks, Ian Ward Comfort.
442 including roughly the same additional information that the Linux PAM
445 Use pam_syslog for logging where available. This means pam-krb5 log
446 messages will look like all other log messages for Linux PAM modules
447 on Linux. Change the format of log messages on all platforms to
451 of the Linux PAM Module Writers' Guide for log levels. More errors
463 pam-krb5 4.0 (2009-11-13)
501 fixes problems with the Linux PAM library where returning PAM_IGNORE
523 pam-krb5 is now built using Automake and Libtool to bring it more in
526 hand-configured linker rules. This may improve portability on some
529 If configured with a prefix of /usr on Linux, use /lib, /lib32, or
531 compilation environment rather than based on known 64-bit Linux
534 Update to rra-c-util 2.0:
536 * Sanity-check the results of krb5-config before proceeding.
537 * Fall back on manual probing if krb5-config results don't work.
538 * Don't break if the user clobbers CPPFLAGS at build time.
540 pam-krb5 3.15 (2009-07-21)
542 Fix a segfault (null pointer dereference) if pam-krb5 is configured
546 pam-krb5 3.14 (2009-07-18)
564 double-free of the ticket cache structure. The most common cause of
575 pam-krb5 3.13 (2009-02-11)
586 (CVE-2009-0360)
599 Hutzelman for additional analysis. (CVE-2009-0361)
602 module into /lib/security or /lib64/security on Linux, matching the
603 standard Linux-PAM module location. Use lib64 instead of lib on
604 64-bit SPARC, PowerPC, and S390 Linux as well as x86_64. Patch from
607 Fix a build problem when builddir != srcdir introduced in 3.11. Patch
613 Add --with-krb5-include and --with-krb5-lib configure options to allow
616 If krb5-config isn't available, attempt to determine if the library
621 pam-krb5 3.12 (2008-11-13)
625 using particular instances for access to a given PAM-authenticated
634 Fix double-free of the ticket cache structure if creation of the
645 Document that pam-krb5 must be listed in the session group as well as
653 pam-krb5 3.11 (2008-07-10)
656 for ignored users or non-Kerberos logins rather than PAM_SUCCESS.
659 meaningful for pam-krb5 in account and session groups.
680 called on an all-zero credential structure. It's not clear what's
695 different krb5-config based on --with-krb5. If krb5-config isn't
699 Sanity-check the results of krb5-config before proceeding and error
702 For Kerberos libraries without krb5-config, also check for networking
703 libraries (-lsocket and friends) before checking for Kerberos
710 compile time if gcc is used to permit better optimization. Hide all
712 Linux. This protects against leaking symbols into the application
719 pam-krb5 3.10 (2007-12-28)
740 pam-krb5 3.9 (2007-11-12)
768 pam-krb5 3.8 (2007-09-30)
777 Fix configure and Makefile glue so that Mac OS X and HP-UX have a
780 Add a make warnings target with aggressive gcc warning options. Treat
784 pam-krb5 3.7 (2007-09-29)
810 Fix determination of linker flags on non-x86_64 Linux. Always link
811 with -fPIC when using GCC, just in case.
813 Add compilation options for Mac OS X and HP-UX (untested).
818 pam-krb5 3.6 (2007-09-18)
822 with no .k5login file. This avoids trying to verify an all-zero
823 credentials structure, leading to non-expoloitable segfaults on x86_64
829 service. Otherwise, system-wide defaults and PAM configuration will
849 Change lib to lib64 on x86_64 Linux to allow for the magical $ISA
855 pam-krb5 3.5 (2007-04-10)
857 Don't try to chown non-FILE ticket caches, which among other things
858 breaks using pam-krb5 with Heimdal KCM caches. Thanks, Jeremy
868 pam-krb5 3.4 (2007-01-28)
874 cope with a NULL context and krb5-config on Heimdal doesn't include
875 -lcom_err.
883 pam-krb5 3.3 (2007-01-24)
904 pam-krb5 3.2 (2007-01-16)
924 0.8rc1 or later. This code should still be considered alpha-quality.
926 pam-krb5 3.1 (2007-01-03)
937 pam-krb5 3.0 (2006-12-18)
942 considered alpha-quality. Currently, PKINIT support requires Heimdal
958 instances of pam-krb5 with different realm settings in the same PAM
964 If PAM_USER is set to a fully-qualified principal that the Kerberos
983 Add a link to the distribution page to the pam-krb5 man page.
987 pam-krb5 2.6 (2006-11-28)
995 versions of gcc and for systems that support neither. Should fix
999 build the module so that symbols are resolved within the module in
1003 pam-krb5 2.5 (2006-11-03)
1009 pam_sm_acct_mgmt. Re-retrieve the value of user in case the
1018 pam-krb5 2.4 (2006-10-05)
1035 to match (some of) the recommendations of the Linux PAM documentation.
1040 pam-krb5 2.3 (2006-09-03)
1043 PAM conversation function on Linux. Prior to this fix, the PAM module
1045 happens when an account requires a password change. Solaris and Linux
1058 pam-krb5 2.2 (2006-08-28)
1063 krb5.conf so that realm-specific sections in [appdefaults] work
1066 Update the build and installation documentation for the new
1067 Autoconf-based build system. This should have been in the last
1075 pam-krb5 2.1 (2006-08-26)
1088 pam-krb5 2.0 (2006-08-11)
1113 Re-add the ccache option to specify the exact file name of the ticket
1119 application to handle authorization checks for non-local accounts.
1137 in-memory credential list.
1170 pam-krb5 1.2 (2005-09-27)
1184 pam-krb5 1.1 (2005-08-31)
1206 principal information to the caller, and the non-standard prompt also