HISTORY revision 94670 
1============================================================================
2OpenPAM Cineraria						2002-04-14
3
4 - ENHANCE: Improved documentation.
5
6 - ENHANCE: Adopt the same preprocessor tricks that were used in
7   FreeBSD's version of Linux-PAM to simplify static linking without
8   requiring dummy primitives.
9
10 - ENHANCE: move the policy-loading code out of pam_start.c.
11
12 - BUGFIX: Fix typo in one of the versions of the openpam_log macro.
13
14 - ENHANCE: Add versioning macros.
15============================================================================
16OpenPAM Cinchona						2002-04-08
17
18 - ENHANCE: Improved documentation for several API functions.
19
20 - BUGFIX: Fix bug in pam_set_data() that would result in corruption
21   of the module data list.
22
23 - BUGFIX: Allocate the correct amount of memory for the environment
24   list in pam_putenv().
25
26 - ENHANCE: Change pam_get_authtok()'s prototype so the caller can
27   specify what token it wants.  Also introduce PAM_OLDAUTHTOK_PROMPT.
28
29 - BUGFIX: Plug memory leak in pam_get_user() / pam_get_authtok(), and
30   reduce differences between these very similar functions.
31
32 - ENHANCE: Check flags carefully in pam_authenticate() and
33   pam_chauthtok().
34
35 - BUGFIX: Fix bugs in portability code; libpam now builds on NetBSD.
36
37 - ENHANCE: In pam_get_authtok(), if PAM_OLDAUTHTOK is set, we're
38   asked for PAM_AUTHTOK, and we have to prompt the user, prompt her
39   twice and compare the responses.
40
41 - ENHANCE: Add openpam_{borrow,restore}_cred(), for temporarily
42   switching to user credentials.
43
44 - ENHANCE: Add openpam_free_data(), a generic cleanup function for
45   pam_set_data() consumers.
46============================================================================
47OpenPAM	Centaury						2002-03-14
48
49 - BUGFIX: Add missing #include <string.h> to openpam_log.c.
50
51 - BUGFIX: s/PAM_REINITIALISE_CRED/PAM_REINITIALIZE_CRED/.  XSSO uses
52   the former, but Solaris and Linux-PAM use the latter.
53
54 - BUGFIX: The dynamic loader and the module cache contained a number
55   of bugs which would cause a segmentation fault if pam_start(3) was
56   called again after pam_end(3), as happens in login(1), xdm(1) etc.
57   after a failed login.
58
59 - BUGFIX: Refer to a module by the name used in the policy file, even
60   if the module that was actually loaded was versioned.
61
62 - ENHANCE: Suppress debugging logs, unless compiled with -DDEBUG.
63============================================================================
64OpenPAM Celandine						2002-03-05
65
66 - BUGFIX: PAM_TRY_AGAIN is a valid return value for pam_chauthtok().
67
68 - BUGFIX: Run passwd chain twice, first with the PAM_PRELIM_CHECK
69   flag set, then with the PAM_UPDATE_AUTHTOK flag set.
70
71 - BUGFIX: Failure of a "sufficient" module should not terminate the
72   passwd chain if the PAM_PRELIM_CHECK flag is set.
73
74 - BUGFIX: Clear PAM_AUTHTOK after running the service modules.
75
76 - ENHANCE: Prevent applications from specifying the PAM_PRELIM_CHECK
77   or PAM_UPDATE_AUTHTOK flags themselves.
78
79 - BUGFIX: openpam_set_option() did not support changing the value of
80   an existing option.
81
82 - ENHANCE: Add support for module versioning.  OpenPAM will prefer a
83   module with the same version number as the library itself to one
84   with no version number at all.
85============================================================================
86OpenPAM	Cantaloupe						2002-02-22
87
88 - BUGFIX: The proper use of PAM_SYMBOL_ERR is to indicate an invalid
89   argument to pam_[gs]et_item(3), not to indicate dlsym(3) failures.
90
91 - ENHANCE: Add in-line documentation in most source files, and a Perl
92   script that generates mdoc code from that.
93
94 - BUGFIX: The environment list was not properly NULL-terminated.
95
96 - ENHANCE: Allow the PAM_AUTHTOK_PROMPT item to override the prompt
97   specified by the module.
98
99 - BUGFIX: PAM_NUM_ITEMS was set too low.  It has been moved to
100   pam_constants.h to avoid it going stale again.
101
102 - ENHANCE: Move all code related to static modules into a separate
103   file.
104
105 - ENHANCE: openpam_ttyconv() now masks most signals while prompting the
106   user, and supports setting a timeout (which defaults to off).
107
108 - BUGFIX: Some manual pages referenced XSSO even though they
109   documented OpenPAM-specific functions.
110
111 - ENHANCE: Added openpam_get_option() and openpam_set_option().
112
113 - ENHANCE: openpam_get_authtok() now respects the echo_pass,
114   try_first_pass, and use_first_pass options.
115============================================================================
116OpenPAM	Caliopsis						2002-02-13
117
118Fixed a number of bugs in the previous release, including:
119  - a number of bugs in and related to pam_[gs]et_item(3)
120  - off-by-one bug in pam_start.c would trim last character off certain
121    configuration lines
122  - incorrect ordering of an array in openpam_load.c would cause service
123    module functions to get mixed up
124  - missing 'continue' in openpam_dispatch.c caused successes to be
125    counted as failures
126============================================================================
127OpenPAM	Calamite						2002-02-09
128
129First (beta) release.
130============================================================================
131$P4: //depot/projects/openpam/HISTORY#9 $
132