Re: Ports broken by OpenPAM
Joe Marcus Clarke [EMAIL PROTECTED] writes: I think I found why pam_ldap wouldn't work with OpenPAM on -CURRENT. Attached is my proposed patch to OpenPAM. With this applied, pam_ldap works like a champ. But of course! Thank you very much, that was a stupid braino. DES -- Dag-Erling Smorgrav - [EMAIL PROTECTED] To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-current in the body of the message
Re: Ports broken by OpenPAM
On Mon, 2002-03-25 at 10:00, Dag-Erling Smorgrav wrote: Joe Clarke [EMAIL PROTECTED] writes: Really? I never received it. Please send it again. Thanks. Here's an updated (but untested) version. I think I found why pam_ldap wouldn't work with OpenPAM on -CURRENT. Attached is my proposed patch to OpenPAM. With this applied, pam_ldap works like a champ. Joe -- PGP Key: http://www.marucscom.com/pgp.asc Index: lib/pam_set_data.c === RCS file: /home/ncvs/src/contrib/openpam/lib/pam_set_data.c,v retrieving revision 1.1.1.4 diff -u -r1.1.1.4 pam_set_data.c --- lib/pam_set_data.c 14 Mar 2002 20:42:06 - 1.1.1.4 +++ lib/pam_set_data.c 31 Mar 2002 22:43:21 - @@ -77,8 +77,10 @@ free(data); return (PAM_BUF_ERR); } + dp-data = data; + dp-cleanup = cleanup dp-next = pamh-module_data; - pamh-module_data = data; + pamh-module_data = dp; return (PAM_SUCCESS); } signature.asc Description: This is a digitally signed message part
Re: Ports broken by OpenPAM
On 25 Mar 2002, Dag-Erling Smorgrav wrote: Joe Clarke [EMAIL PROTECTED] writes: Really? I never received it. Please send it again. Thanks. Here's an updated (but untested) version. The patch applies cleanly, and pam_ldap builds. Howvever, every service I try to authenticate with it fails with a core dump of some kind. I'm currently analyzing ftpd which dies on a SIGILL. As soon as I have a backtrace, I'll send it out. Joe DES -- Dag-Erling Smorgrav - [EMAIL PROTECTED] To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-current in the body of the message
Re: Ports broken by OpenPAM
Kris Kennaway [EMAIL PROTECTED] writes: bftpd-1.0.22.log pam-pgsql-0.5.2_2.log Not tested. pam_ldap-1.4.0.log Not my problem; I sent the maintainer a patch ages ago. pam_mysql-0.4.7.log Not tested. pam_ssh-1.5.log This port should die, pam_ssh(8) is in the base system and the port is way out of date. samba-3.0a15.log See previous mail. vlock-1.3.log Not tested. DES -- Dag-Erling Smorgrav - [EMAIL PROTECTED] To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-current in the body of the message
Re: Ports broken by OpenPAM
On 25 Mar 2002, Dag-Erling Smorgrav wrote: Kris Kennaway [EMAIL PROTECTED] writes: bftpd-1.0.22.log pam-pgsql-0.5.2_2.log Not tested. pam_ldap-1.4.0.log Not my problem; I sent the maintainer a patch ages ago. Really? I never received it. Please send it again. Thanks. Joe [snip] To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-current in the body of the message
Re: Ports broken by OpenPAM
Joe Clarke [EMAIL PROTECTED] writes:
Really? I never received it. Please send it again. Thanks.
Here's an updated (but untested) version.
DES
--
Dag-Erling Smorgrav - [EMAIL PROTECTED]
--- pam_ldap.c.orig Mon Mar 25 15:54:28 2002
+++ pam_ldap.c Mon Mar 25 15:54:29 2002
@@ -126,12 +126,7 @@
#include pam_ldap.h
#include md5.h
-#ifdef HAVE_SECURITY_PAM_MISC_H
- /* FIXME: is there something better to check? */
#define CONST_ARG const
-#else
-#define CONST_ARG
-#endif
#ifndef HAVE_LDAP_MEMFREE
#define ldap_memfree(x) free(x)
@@ -2843,11 +2838,11 @@
{
_conv_sendmsg (appconv, Password change aborted,
PAM_ERROR_MSG, no_warn);
-#ifdef PAM_AUTHTOK_RECOVERY_ERR
- return PAM_AUTHTOK_RECOVERY_ERR;
-#else
+#ifdef PAM_AUTHTOK_RECOVER_ERR
return PAM_AUTHTOK_RECOVER_ERR;
-#endif /* PAM_AUTHTOK_RECOVERY_ERR */
+#else
+ return PAM_AUTHTOK_RECOVERY_ERR;
+#endif /* PAM_AUTHTOK_RECOVER_ERR */
}
else
{
@@ -2887,11 +2882,11 @@
syslog (LOG_ERR,
pam_ldap: error getting old authentication token (%s),
pam_strerror (pamh, rc));
-#ifdef PAM_AUTHTOK_RECOVERY_ERR
- return PAM_AUTHTOK_RECOVERY_ERR;
-#else
+#ifdef PAM_AUTHTOK_RECOVER_ERR
return PAM_AUTHTOK_RECOVER_ERR;
-#endif /* PAM_AUTHTOK_RECOVERY_ERR */
+#else
+ return PAM_AUTHTOK_RECOVERY_ERR;
+#endif /* PAM_AUTHTOK_RECOVER_ERR */
}
if (try_first_pass || use_first_pass)
@@ -2901,11 +2896,11 @@
newpass = NULL;
if (use_first_pass newpass == NULL)
-#ifdef PAM_AUTHTOK_RECOVERY_ERR
- return PAM_AUTHTOK_RECOVERY_ERR;
-#else
+#ifdef PAM_AUTHTOK_RECOVER_ERR
return PAM_AUTHTOK_RECOVER_ERR;
-#endif /* PAM_AUTHTOK_RECOVERY_ERR */
+#else
+ return PAM_AUTHTOK_RECOVERY_ERR;
+#endif /* PAM_AUTHTOK_RECOVER_ERR */
}
tries = 0;
@@ -2955,11 +2950,11 @@
}
else
{
-#ifdef PAM_AUTHTOK_RECOVERY_ERR
- return PAM_AUTHTOK_RECOVERY_ERR;
-#else
+#ifdef PAM_AUTHTOK_RECOVER_ERR
return PAM_AUTHTOK_RECOVER_ERR;
-#endif /* PAM_AUTHTOK_RECOVERY_ERR */
+#else
+ return PAM_AUTHTOK_RECOVERY_ERR;
+#endif /* PAM_AUTHTOK_RECOVER_ERR */
}
if (cmiscptr == NULL)
@@ -2991,11 +2986,11 @@
{
_conv_sendmsg (appconv, Password change aborted,
PAM_ERROR_MSG, no_warn);
-#ifdef PAM_AUTHTOK_RECOVERY_ERR
- return PAM_AUTHTOK_RECOVERY_ERR;
-#else
+#ifdef PAM_AUTHTOK_RECOVER_ERR
return PAM_AUTHTOK_RECOVER_ERR;
-#endif /* PAM_AUTHTOK_RECOVERY_ERR */
+#else
+ return PAM_AUTHTOK_RECOVERY_ERR;
+#endif /* PAM_AUTHTOK_RECOVER_ERR */
}
}
else if (!strcmp (newpass, miscptr))
Re: Ports broken by OpenPAM
On Mon, 2002-03-25 at 10:00, Dag-Erling Smorgrav wrote:
Joe Clarke [EMAIL PROTECTED] writes:
Really? I never received it. Please send it again. Thanks.
Here's an updated (but untested) version.
Thanks. As soon as I finish get my -current machine built, I'll test
these out.
Joe
DES
--
Dag-Erling Smorgrav - [EMAIL PROTECTED]
--- pam_ldap.c.orig Mon Mar 25 15:54:28 2002
+++ pam_ldap.cMon Mar 25 15:54:29 2002
@@ -126,12 +126,7 @@
#include pam_ldap.h
#include md5.h
-#ifdef HAVE_SECURITY_PAM_MISC_H
- /* FIXME: is there something better to check? */
#define CONST_ARG const
-#else
-#define CONST_ARG
-#endif
#ifndef HAVE_LDAP_MEMFREE
#define ldap_memfree(x) free(x)
@@ -2843,11 +2838,11 @@
{
_conv_sendmsg (appconv, Password change aborted,
PAM_ERROR_MSG, no_warn);
-#ifdef PAM_AUTHTOK_RECOVERY_ERR
- return PAM_AUTHTOK_RECOVERY_ERR;
-#else
+#ifdef PAM_AUTHTOK_RECOVER_ERR
return PAM_AUTHTOK_RECOVER_ERR;
-#endif /* PAM_AUTHTOK_RECOVERY_ERR */
+#else
+ return PAM_AUTHTOK_RECOVERY_ERR;
+#endif /* PAM_AUTHTOK_RECOVER_ERR */
}
else
{
@@ -2887,11 +2882,11 @@
syslog (LOG_ERR,
pam_ldap: error getting old authentication token (%s),
pam_strerror (pamh, rc));
-#ifdef PAM_AUTHTOK_RECOVERY_ERR
- return PAM_AUTHTOK_RECOVERY_ERR;
-#else
+#ifdef PAM_AUTHTOK_RECOVER_ERR
return PAM_AUTHTOK_RECOVER_ERR;
-#endif /* PAM_AUTHTOK_RECOVERY_ERR */
+#else
+ return PAM_AUTHTOK_RECOVERY_ERR;
+#endif /* PAM_AUTHTOK_RECOVER_ERR */
}
if (try_first_pass || use_first_pass)
@@ -2901,11 +2896,11 @@
newpass = NULL;
if (use_first_pass newpass == NULL)
-#ifdef PAM_AUTHTOK_RECOVERY_ERR
- return PAM_AUTHTOK_RECOVERY_ERR;
-#else
+#ifdef PAM_AUTHTOK_RECOVER_ERR
return PAM_AUTHTOK_RECOVER_ERR;
-#endif /* PAM_AUTHTOK_RECOVERY_ERR */
+#else
+ return PAM_AUTHTOK_RECOVERY_ERR;
+#endif /* PAM_AUTHTOK_RECOVER_ERR */
}
tries = 0;
@@ -2955,11 +2950,11 @@
}
else
{
-#ifdef PAM_AUTHTOK_RECOVERY_ERR
- return PAM_AUTHTOK_RECOVERY_ERR;
-#else
+#ifdef PAM_AUTHTOK_RECOVER_ERR
return PAM_AUTHTOK_RECOVER_ERR;
-#endif /* PAM_AUTHTOK_RECOVERY_ERR */
+#else
+ return PAM_AUTHTOK_RECOVERY_ERR;
+#endif /* PAM_AUTHTOK_RECOVER_ERR */
}
if (cmiscptr == NULL)
@@ -2991,11 +2986,11 @@
{
_conv_sendmsg (appconv, Password change aborted,
PAM_ERROR_MSG, no_warn);
-#ifdef PAM_AUTHTOK_RECOVERY_ERR
- return PAM_AUTHTOK_RECOVERY_ERR;
-#else
+#ifdef PAM_AUTHTOK_RECOVER_ERR
return PAM_AUTHTOK_RECOVER_ERR;
-#endif /* PAM_AUTHTOK_RECOVERY_ERR */
+#else
+ return PAM_AUTHTOK_RECOVERY_ERR;
+#endif /* PAM_AUTHTOK_RECOVER_ERR */
}
}
else if (!strcmp (newpass, miscptr))
signature.asc
Description: This is a digitally signed message part
Ports broken by OpenPAM
..include the following: bftpd-1.0.22.log pam-pgsql-0.5.2_2.log pam_ldap-1.4.0.log pam_mysql-0.4.7.log pam_ssh-1.5.log samba-3.0a15.log vlock-1.3.log Logs available on bento: http://bento.freebsd.org/errorlogs/5-latest/ Kris msg36531/pgp0.pgp Description: PGP signature
