HISTORY revision 94670
1============================================================================ 2OpenPAM Cineraria 2002-04-14 3 4 - ENHANCE: Improved documentation. 5 6 - ENHANCE: Adopt the same preprocessor tricks that were used in 7 FreeBSD's version of Linux-PAM to simplify static linking without 8 requiring dummy primitives. 9 10 - ENHANCE: move the policy-loading code out of pam_start.c. 11 12 - BUGFIX: Fix typo in one of the versions of the openpam_log macro. 13 14 - ENHANCE: Add versioning macros. 15============================================================================ 16OpenPAM Cinchona 2002-04-08 17 18 - ENHANCE: Improved documentation for several API functions. 19 20 - BUGFIX: Fix bug in pam_set_data() that would result in corruption 21 of the module data list. 22 23 - BUGFIX: Allocate the correct amount of memory for the environment 24 list in pam_putenv(). 25 26 - ENHANCE: Change pam_get_authtok()'s prototype so the caller can 27 specify what token it wants. Also introduce PAM_OLDAUTHTOK_PROMPT. 28 29 - BUGFIX: Plug memory leak in pam_get_user() / pam_get_authtok(), and 30 reduce differences between these very similar functions. 31 32 - ENHANCE: Check flags carefully in pam_authenticate() and 33 pam_chauthtok(). 34 35 - BUGFIX: Fix bugs in portability code; libpam now builds on NetBSD. 36 37 - ENHANCE: In pam_get_authtok(), if PAM_OLDAUTHTOK is set, we're 38 asked for PAM_AUTHTOK, and we have to prompt the user, prompt her 39 twice and compare the responses. 40 41 - ENHANCE: Add openpam_{borrow,restore}_cred(), for temporarily 42 switching to user credentials. 43 44 - ENHANCE: Add openpam_free_data(), a generic cleanup function for 45 pam_set_data() consumers. 46============================================================================ 47OpenPAM Centaury 2002-03-14 48 49 - BUGFIX: Add missing #include <string.h> to openpam_log.c. 50 51 - BUGFIX: s/PAM_REINITIALISE_CRED/PAM_REINITIALIZE_CRED/. XSSO uses 52 the former, but Solaris and Linux-PAM use the latter. 53 54 - BUGFIX: The dynamic loader and the module cache contained a number 55 of bugs which would cause a segmentation fault if pam_start(3) was 56 called again after pam_end(3), as happens in login(1), xdm(1) etc. 57 after a failed login. 58 59 - BUGFIX: Refer to a module by the name used in the policy file, even 60 if the module that was actually loaded was versioned. 61 62 - ENHANCE: Suppress debugging logs, unless compiled with -DDEBUG. 63============================================================================ 64OpenPAM Celandine 2002-03-05 65 66 - BUGFIX: PAM_TRY_AGAIN is a valid return value for pam_chauthtok(). 67 68 - BUGFIX: Run passwd chain twice, first with the PAM_PRELIM_CHECK 69 flag set, then with the PAM_UPDATE_AUTHTOK flag set. 70 71 - BUGFIX: Failure of a "sufficient" module should not terminate the 72 passwd chain if the PAM_PRELIM_CHECK flag is set. 73 74 - BUGFIX: Clear PAM_AUTHTOK after running the service modules. 75 76 - ENHANCE: Prevent applications from specifying the PAM_PRELIM_CHECK 77 or PAM_UPDATE_AUTHTOK flags themselves. 78 79 - BUGFIX: openpam_set_option() did not support changing the value of 80 an existing option. 81 82 - ENHANCE: Add support for module versioning. OpenPAM will prefer a 83 module with the same version number as the library itself to one 84 with no version number at all. 85============================================================================ 86OpenPAM Cantaloupe 2002-02-22 87 88 - BUGFIX: The proper use of PAM_SYMBOL_ERR is to indicate an invalid 89 argument to pam_[gs]et_item(3), not to indicate dlsym(3) failures. 90 91 - ENHANCE: Add in-line documentation in most source files, and a Perl 92 script that generates mdoc code from that. 93 94 - BUGFIX: The environment list was not properly NULL-terminated. 95 96 - ENHANCE: Allow the PAM_AUTHTOK_PROMPT item to override the prompt 97 specified by the module. 98 99 - BUGFIX: PAM_NUM_ITEMS was set too low. It has been moved to 100 pam_constants.h to avoid it going stale again. 101 102 - ENHANCE: Move all code related to static modules into a separate 103 file. 104 105 - ENHANCE: openpam_ttyconv() now masks most signals while prompting the 106 user, and supports setting a timeout (which defaults to off). 107 108 - BUGFIX: Some manual pages referenced XSSO even though they 109 documented OpenPAM-specific functions. 110 111 - ENHANCE: Added openpam_get_option() and openpam_set_option(). 112 113 - ENHANCE: openpam_get_authtok() now respects the echo_pass, 114 try_first_pass, and use_first_pass options. 115============================================================================ 116OpenPAM Caliopsis 2002-02-13 117 118Fixed a number of bugs in the previous release, including: 119 - a number of bugs in and related to pam_[gs]et_item(3) 120 - off-by-one bug in pam_start.c would trim last character off certain 121 configuration lines 122 - incorrect ordering of an array in openpam_load.c would cause service 123 module functions to get mixed up 124 - missing 'continue' in openpam_dispatch.c caused successes to be 125 counted as failures 126============================================================================ 127OpenPAM Calamite 2002-02-09 128 129First (beta) release. 130============================================================================ 131$P4: //depot/projects/openpam/HISTORY#9 $ 132