Klas Lindfors
26b310cda9
Merge branch 'mysql_tests'
2021-04-07 10:33:55 +02:00
Klas Lindfors
23fb773279
sql: add test for mysql config
2021-04-06 14:28:51 +02:00
Klas Lindfors
371d6048fe
ci: always end tests with displaying logs
2021-04-06 14:14:41 +02:00
Klas Lindfors
6c95950515
sql: more setup for sql tests
2021-04-06 14:08:35 +02:00
Klas Lindfors
aa81bb8cd6
sql: add mysql_port configuration
2021-04-06 14:08:35 +02:00
Klas Lindfors
54c2104252
ci: add database service for mysql builds
2021-04-01 14:39:22 +02:00
Klas Lindfors
c8a8775838
sql: add schema for yubikey_mapping
2021-04-01 14:11:36 +02:00
Klas Lindfors
5b6f78c134
ci: drop all CC and just use whatever
2021-04-01 14:10:01 +02:00
Klas Lindfors
ceb4c53efd
Merge branch 'ci_github_actions'
2021-04-01 14:02:12 +02:00
Klas Lindfors
93c8229ea1
ci: more ubuntus
2021-03-31 13:00:29 +02:00
Klas Lindfors
55a0f78972
mysql: use the .is_null_value member of the MYSQL_BIND structure
...
instead of setting a pointer, this seems to have better API
compatibility, also get rid of the error member that was never checked.
2021-03-31 13:00:29 +02:00
Klas Lindfors
8538e93761
ci: add mysql test job
2021-03-31 13:00:24 +02:00
Klas Lindfors
9a80643a8e
ci: start porting tests to github actions
2021-03-31 11:47:15 +02:00
Klas Lindfors
3b3d341a06
mysql: is_null and error should be my_bool not bool
2021-01-12 08:50:57 +01:00
Klas Lindfors
d468b61caf
Merge branch 'pr-221'
2021-01-12 08:47:40 +01:00
Benjamin AIMARD
b708e6dcf1
Add support of Mysql/Mariadb for the yubikey_mapping
...
Add support of Mysql/Mariadb for the yubikey_mapping
Mise à jour sql complete, manque la documentation
Final
clean
Add packages dependency
actions: apt update
Fix bool variable cause error build travis
Fix job #2
Fix job #3
Fix #4
fix &null
fix &null
fix &null
Fix line 257 %s
test Apple integration
test Apple integration
Timeout Travis extend
Timeout travis extend
Fix klali comment
Fix warning
fix configure.ac
fix configure.ac
Update configure.ac
Update util.c
Update util.h
Update util.c
Update util.c
Update util.c
Update util.c
Fix white space
fix left column
2020-12-18 23:23:30 +01:00
Gabriel Kihlman
d4ed13d4b1
actions: apt update
2020-12-01 09:18:59 +01:00
Gabriel Kihlman
07892d21e0
actions: CodeQL scanner
2020-10-02 17:44:50 +02:00
Gabriel Kihlman
0c1f71cf5c
Merge pull request #214 from Yubico/update-fqdn
...
Update scan action with correct image fqdn
2020-08-03 16:33:58 +02:00
Marissa Nishimoto
5aa55395a7
Update scan action with correct image fqdn
2020-07-27 16:21:58 -07:00
Klas Lindfors
7926f8dd41
tests: add a http/1.1 header to the ykval mock
...
it lies a bit more convincingly like this
fixes #202
2020-04-16 10:59:35 +02:00
Klas Lindfors
2cddac559c
Merge branch 'pr-210'
2020-03-23 08:24:46 +01:00
fgierlinger
66ed4f408d
Fix typo in man pages
2020-03-22 09:28:39 +01:00
Gabriel Kihlman
dac07a76f0
Rerun the scan once a week
...
Might be new scanner versions or scanners added. This will
make sure new better (?) scanners will be run on repos that
might not have that much activity
2020-01-09 14:41:30 +01:00
Gabriel Kihlman
609496765a
Merge pull request #204 from Yubico/scan
...
Adding a static code analysis github workflow
2019-12-11 09:50:00 +01:00
Gabriel Kihlman
7286135399
Adding a static code analysis github workflow
2019-12-09 13:21:19 +01:00
Klas Lindfors
5803e4e578
Merge branch 'pr-203'
2019-12-09 08:40:29 +01:00
Edmundo Ferreira
2a98e0ac1b
Adds autotools option for building without documentation
...
- removes a2x dependency used for man page generation by configuring with:
./configure --disable-documentation
2019-12-05 10:57:11 +01:00
Gabriel Kihlman
04f26f7d29
Typo in debug message: Privilges -> Privileges
2019-10-25 15:02:52 +02:00
Klas Lindfors
3d71fce7ba
Merge branch 'pr-200'
2019-09-24 10:15:36 +02:00
Marc Sensenich
027f5950d8
Compare Token from LDAP and Input Against Configured Length
2019-09-23 18:03:47 -04:00
Klas Lindfors
b5bd00db81
Merge branch 'pr-196'
2019-07-01 08:35:04 +02:00
Yuping Zuo
4d8d39dea8
Fix filename in makefile
2019-06-28 22:29:11 +08:00
Yuping Zuo
43d5c39880
Update SELinux doc
...
Added instructions on how to re-enable SELinux
2019-06-27 10:23:17 +08:00
Yuping Zuo
da79e1d5dc
Rename and update SELinux doc
...
- Renamed the title to remove Fedora as this applies to Enterprise Linux too.
- Added a new section on debugging with sshd.
2019-06-27 10:20:13 +08:00
Klas Lindfors
3d8d06d949
use lstat() when checking for existance of user mapping file
...
this treats the existance of a symlink as an intent to configure the
mapping and will fail in check_user_token() instead
2019-06-26 14:58:45 +02:00
Klas Lindfors
f300115a64
check if user file exists before trying to open
...
and return AUTH_NO_TOKENS if file doesn't exist. This fixes issues in
the nullok case where this user should just be skipped over, handle
other issues with user file as an AUTH_ERROR.
fixes #194
2019-06-24 14:13:47 +02:00
Klas Lindfors
fcfcba6c2f
Merge branch 'pr-192'
2019-06-10 10:18:43 +02:00
Gabriel Kihlman
9d24c966c3
Avoid potentially following a symlink with open()
2019-05-15 12:50:05 +02:00
Gabriel Kihlman
bec4e43732
Fix a TOCTOU case when opening the debug_file
...
This also unifies the code between pam-u2f and yubico-pam which means
removing the O_CREAT flag here. This is however in line with the README
and the behaviour of pam-u2f. Also, the previous code did lstat on the
path before and if it did not exist it would not have moved on to the
open() anyways.
2019-05-15 12:38:24 +02:00
Klas Lindfors
1c6fa66825
Merge branch 'pr-189'
2019-03-19 15:10:00 +01:00
Gabriel Kihlman
5498bcf53f
Fix two minor memory leaks in error paths
...
Found by cppcheck
2019-03-19 14:49:45 +01:00
Klas Lindfors
f7b1e051bd
Merge branch 'pr-188'
2019-03-19 14:48:09 +01:00
Gabriel Kihlman
9531bc3c76
Fix pam_get_data stack overwrite by saving a heap pointer instead
...
The previous code was using a trick of saving the actual retval value
as the "pointer". The problem with that was when pam_get_data copied
it out it treated it as a void* which is 8 byte on 64 bit operating
system which meant it copied 8 byte to a 4 byte location and overwrote
the stack with 4 bytes.
The fix is using a heap pointer instead, influenced by the official
code in https://github.com/linux-pam/linux-pam/blob/master/modules/pam_unix/pam_unix_auth.c
With feedback from pedro martelletto, thanks.
2019-03-19 14:28:18 +01:00
Klas Lindfors
eca00d0a58
Merge branch 'pr-187'
2019-02-06 09:31:06 +01:00
Klas Lindfors
cc14ad4d39
Merge branch 'pr-186'
2019-02-06 09:29:43 +01:00
Gabriel Kihlman
b1fbb1ab64
Add missing header file missing in the last commit
2019-02-04 20:37:42 +01:00
Gabriel Kihlman
76034c1054
Scrub sensitive data from memory
...
Fixes issue #185
2019-02-04 19:50:30 +01:00
Gabriel Kihlman
5f7d7964de
Ensure that the debug log always outputs a valid OTP and not an accidental password
...
Fixes issue #184
2019-02-04 10:25:31 +01:00
Klas Lindfors
456c2a125d
Merge branch 'pr-181'
2019-01-15 08:28:36 +01:00