Age | Commit message (Collapse) | Author | Files | Lines |
|
Patrick Williams (2):
build: remove unneeded thread dependency
build: simplify gtest/gmock dependencies
William A. Kennington III (3):
build: Add options for tweaking what is built
build: Don't enable tests or examples in subprojects
build: Allow for vendored googletest
(From meta-phosphor rev: 624d8ee7100fb13d000691f47471bda6c1e1b488)
Change-Id: Iba46f346e2921a66c5329a0868c3d86443afc957
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Andrew Geissler <geissonator@yahoo.com>
|
|
Patrick Williams (1):
sdbus++: add support for 'set'
(From meta-phosphor rev: f3a8bafea813b576e12d517675eec631efa0311a)
Change-Id: I7fb8fb182bdd8413b2fffa2c8d4c4deba6439eda
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Andrew Geissler <geissonator@yahoo.com>
|
|
Patrick Williams (1):
sdbus++-gendir: simplification refactor
(From meta-phosphor rev: e75d5e47be1bbc345e35997fa7d4bf92f903a2e9)
Change-Id: Ie1e42a77e955db3053f86acaa2061c5efb7e188b
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Andrew Geissler <geissonator@yahoo.com>
|
|
William A. Kennington III (1):
raw: Add equal method
(From meta-phosphor rev: 4414bb743cfd7b9c79b080923351e22a4ce8cc23)
Change-Id: Ia97c09e4e1be5344e4c5b70c5f6592ea67a5174b
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Andrew Geissler <geissonator@yahoo.com>
|
|
William A. Kennington III (1):
util/cexec: Fix bug in std::string helper
(From meta-phosphor rev: eea9688b8397b94412196ffa347459a91d2a62da)
Change-Id: I6618e068015a83c017475ec3e2ab9b7d244ec500
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Andrew Geissler <geissonator@yahoo.com>
|
|
Andrew Geissler (1):
test: add simple aio case
Konrad Sztyber (1):
sdbusplus: settable timeout value for async_method_call
Patrick Williams (8):
meson: create structure for use as submodule
build: remove autotools builds
build: split source and header directories
sdbus++-gendir: run in parallel
asio: object_server: remove invalid root interface
test: fix boost dependency for bus/aio
sdbus++-gendir: handle missing nproc
boost: add context dependency
Waqar Hameed (3):
server: Check return code for sd_bus_add_object_vtable()
Add support for vtable flags for methods
Add support for vtable flags for properties
William A. Kennington III (2):
message: Remove legacy variant and variant_ns
build: Move boost dependency into example
(From meta-phosphor rev: 213a0a46b9e68b64fcc1f8e9a0b289c4f7ec5d3f)
Change-Id: I7bc5411ec1ca2987d4e75f53abb1662af8bf2df5
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Andrew Geissler <geissonator@yahoo.com>
|
|
Include pam-localuser to the rootfs file system. This will be
used to do pam_authenticate restriction based on group ownership
for localusers and ignore it for ldap users.
Tested:
Along with pam-webserver changes with authenticate required, verified
that local users belonging to redfish group are only allowed to login to
bmcweb.
(From meta-phosphor rev: 4f3be3adf5e30894f7749bfa8c52e4a9b506d01b)
Change-Id: Icec9ae4f2c8e08c6d66733995158aeae85352beb
Signed-off-by: Richard Marian Thomaiyar <richard.marian.thomaiyar@linux.intel.com>
Signed-off-by: Andrew Geissler <geissonator@yahoo.com>
|
|
William A. Kennington III (3):
README: Fix for meson instructions
meson: Don't build tests or examples in subprojects
meson: Make googletest vendorable
(From meta-phosphor rev: efd993af93a2862d7d093621c2d43fbcbd28cd0b)
Change-Id: I403886ae749da19043fa57613215906bd2615231
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Andrew Geissler <geissonator@yahoo.com>
|
|
William A. Kennington III (7):
test: Add initial support for catch2
test: Only build tests when needed
test/signal: Convert to catch2
util/cexec: Add convenience methods for taking strings
raw: Add class for extracting bytes into structures
src: Filter pkgconfig requires
src: Fix missing installed header
(From meta-phosphor rev: 73425732b56bd1e72781e807c9099e69b43c7ffb)
Change-Id: I04e3b0e540b1aad91549cdbb9af0a21d6ab84515
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Andrew Geissler <geissonator@yahoo.com>
|
|
William A. Kennington III (12):
README: Fix for meson instructions
event: Add non-owning constructor
source/*: Use unique_function so our callbacks can be move-only
src: Fix non-installed types.hpp
utility/timer: Use unique_function so our callbacks can be move-only
source/*: Implement heap based userdata
source/*: Allow copies to be made
sdevent: Support floating sources
source/base: Support floating sources
example/heartbeat: Demonstrate a floating source
utility/timer: Implement heap based userdata
utility/timer: Allow floating
(From meta-phosphor rev: 96af4c15249b2d66cac9d011b5a8e3dad2ef72ea)
Change-Id: Ib005838cae70616638880f90d453088a5d6a0797
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Andrew Geissler <geissonator@yahoo.com>
|
|
William A. Kennington III (4):
test: Allow optional usage of vendored googletest
src: Allow for stdplus to be vendored
src: Fix pkgconfig generation missing systemd requirement
meson: Don't use unneeded features in subprojects
(From meta-phosphor rev: 71b134a86ea3dab57dea272b7763de964a0799ac)
Change-Id: I601b9bc25002c6bbaa842b9bf300900300db7441
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Andrew Geissler <geissonator@yahoo.com>
|
|
fmt is now used to format error message and span-lite is used for
supporting span processing.
(From meta-phosphor rev: 3bb4926caa0bb832a54748ccd539c9c2470b3e1a)
Change-Id: I486b7072b8c9b93155929718ec6f0de3b58f09ce
Signed-off-by: William A. Kennington III <wak@google.com>
Signed-off-by: Andrew Geissler <geissonator@yahoo.com>
|
|
(From meta-phosphor rev: f9eed5e63cb16cf58ccfe14c953e42ba8a194403)
Signed-off-by: Patrick Williams <patrick@stwcx.xyz>
Change-Id: Ie6fb8b012b5750378f882794f0777e06778722aa
Signed-off-by: Andrew Geissler <geissonator@yahoo.com>
|
|
Patrick Williams (2):
sdbus++-gendir: remove redundant case in arg-parsing
meson: add missing pkgconfig requires
William A. Kennington III (1):
meson: Don't require sdbusplus to be built shared
(From meta-phosphor rev: ce97e295a6e4c877f82cd40e41c192fc137fd7ac)
Change-Id: I9734f48bb6c5722499ef377d20acc3586712a750
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Andrew Geissler <geissonator@yahoo.com>
|
|
sdbusplus removed support for disabling transaction IDs and
deprecated the --enable-transaction configure flag. Remove
it here as well.
(From meta-phosphor rev: 3e13720e24f574e4b943032549707a6854e72303)
Signed-off-by: Patrick Williams <patrick@stwcx.xyz>
Change-Id: Ie3efd0ba4366e3bfc9b5fc5db27bcc182d95f7aa
Signed-off-by: Andrew Geissler <geissonator@yahoo.com>
|
|
The sdbusplus repository now has a real setup.py file that doesn't
require autotools generation. Switch to a normal setuptools3
recipe.
(From meta-phosphor rev: 1914bbb37e7307f9f96b2c752f8df8f7699463cf)
Signed-off-by: Patrick Williams <patrick@stwcx.xyz>
Change-Id: I31bac1fcc061cc0195fb7d3accf922ec57852ba1
Signed-off-by: Andrew Geissler <geissonator@yahoo.com>
|
|
Patrick Williams (4):
sdbus++: create script to generate all files from a dir
meson: feature match autotools support
sdbus++: rename template mako files
sdbus++: fix setup.py for template file change
Wludzik, Jozef (1):
sdbusplus: validate interface and path passed to DBus
(From meta-phosphor rev: f842ab2dc41d2baa998f66a90ca6f3365ece77ff)
Change-Id: I5fb81650eaf7047b03ee094d29bcd36550e8d00c
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Andrew Geissler <geissonator@yahoo.com>
|
|
Patrick Williams (12):
remove usage of WANT_TRANSACTION option
build: move python setuptools for future non-autotools
build: add setuptools install script
clean up pedantic compile warnings
asio: object_server: add virtual destructors
clang-format: reformat for clang-10
clean up more pedantic compile warnings
meson: create basic build structure
meson: set default buildtype to debugoptimized
asio: connection: add missing initializer
clang-format: sync from docs master .clang-format
test: exception: suppress scan-build errors
(From meta-phosphor rev: 0322b039747bd7c7cb1e705851849cbe625b9325)
Change-Id: I997cfd9f0f8c5f7a243011f962f76ed765b6b7df
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Andrew Geissler <geissonator@yahoo.com>
|
|
Andrew Geissler (1):
include needed file for runtime_error
Patrick Williams (1):
MAINTAINERS: remove Ed Tanous as reviewer
(From meta-phosphor rev: f329f6f9b7824c774924c6b4aefd9cf12f79117d)
Change-Id: I4790dced960b0739d2b85851f6524a9775526557
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Andrew Geissler <geissonator@yahoo.com>
|
|
Vernon Mauery (1):
[pam-ipmi]: Fix key & password file permission
(From meta-phosphor rev: 2a570d00c317f02af8488be2cae6add1da089f77)
Change-Id: I0184bf2ac29890eb90185bda7c41fab307c4d31e
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Andrew Geissler <geissonator@yahoo.com>
|
|
Vernon Mauery (1):
[pam-ipmi]: fix default data file permissions
(From meta-phosphor rev: c049f668387f981bf866ac95f9d97d40fd357c07)
Change-Id: Iec3a97a41dec1a9784184e66e6a6b877155e8d92
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Andrew Geissler <geissonator@yahoo.com>
|
|
Adrian Ambrożewicz (1):
Added register_signal method to sdbusplus::asio::dbus_interface
Vernon Mauery (1):
Include <set> to be able to use std::set
(From meta-phosphor rev: eb73ffd469eb4a207b07b20a17d1a4776d3bfd4d)
Change-Id: Ib6886bba190f039b0b3d20ecabf8f0ba1b6e432f
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Andrew Geissler <geissonator@yahoo.com>
|
|
All recipes consuming sdbus++ have now migrated to the python3
version. Remove the python2 version.
(From meta-phosphor rev: bb27bf20fa96141b4ac64262191b9ad0543e8a10)
Signed-off-by: Patrick Williams <patrick@stwcx.xyz>
Change-Id: Idae08e4354fa75a9acb3036b7ea7b873d396c4b8
Signed-off-by: Andrew Geissler <geissonator@yahoo.com>
|
|
When moving all packages over to use ${PYTHON_PN}-sdbus++ instead of
the (python2-based) sdbus++ alias, I ran into frequent problems where
BOTH python-sdbus++ and python3-sdbus++ were in the DEPEND-chain. When
this happens, bitbake is upset because both packages install the sdbus++
executable. (Both are in the DEPEND-chain because some packages have
transitioned to python3 and some have not.)
There are two reasons someone might depend on the python-sdbus++-native
package:
1. They need to use the sdbus++ executable to generate code.
2. They wrote their own scripts leveraging sdbus++'s module.
For #1, we can force everyone to use the python3 varient by adding
a DEPEND on python3-sdbus++-native and then removing sdbus++ (the
executable). This will continue to install the python modules for #2.
(From meta-phosphor rev: 737cd1accac2d00d9adfaced667da81e6207c66b)
Signed-off-by: Patrick Williams <patrick@stwcx.xyz>
Change-Id: Ia1c8697ecc36dffdc52b3e7206e428f8112e4ed2
Signed-off-by: Andrew Geissler <geissonator@yahoo.com>
|
|
This srcrev switches from python2 to python3, which requires
some adjustments in recipes and updates to the dual-support patch.
Now, the python3 recipes have no patches and the python2 one has a
revert patch.
Patrick Williams (1):
sdbus++: switch to python3
Waqar Hameed (1):
Update README.md for Python 3
(From meta-phosphor rev: 07ce0de9aab794479036b94e9275d2fd97bb95b5)
Change-Id: I10381d22d35deaf1726b597a0d690af098f21cc0
Signed-off-by: Patrick Williams <patrick@stwcx.xyz>
Signed-off-by: Andrew Geissler <geissonator@yahoo.com>
|
|
(From meta-phosphor rev: 11d5972170def0cafb42297f179312504a36ad02)
Signed-off-by: Patrick Williams <patrick@stwcx.xyz>
Change-Id: I0cb4eac12be86aa9379992756a5757ea2c51591a
Signed-off-by: Andrew Geissler <geissonator@yahoo.com>
|
|
(From meta-phosphor rev: 7aba8156394c5608565e549a1b9de3e9a91b5ff1)
Signed-off-by: Patrick Williams <patrick@stwcx.xyz>
Change-Id: I471c25139f9fef8c976613a9f8c25d7617c1aa8c
Signed-off-by: Andrew Geissler <geissonator@yahoo.com>
|
|
(From meta-phosphor rev: 25448842ef11e923d8c188e0a1d5b9b65bd3f8d0)
Signed-off-by: Patrick Williams <patrick@stwcx.xyz>
Change-Id: Ic7c0746d6e92cb06d332ed7c75d128596b72dd78
Signed-off-by: Andrew Geissler <geissonator@yahoo.com>
|
|
William A. Kennington III (2):
meson: Don't build tests or examples if subproject
test: Allow optional usage of vendored googletest
(From meta-phosphor rev: 248c1d92764ff45486ab0ae29ad167db705f4449)
Change-Id: I22fd12e4b0e6ca893b9e7383a092a88245c8a35f
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Andrew Geissler <geissonator@yahoo.com>
|
|
Lei YU (1):
sdbus++: Generate initial client header
(From meta-phosphor rev: db8f37d16de5dcad40fbb51aa9e3f93dabb1163a)
Change-Id: I8cc08d65dbdd2b7b3c70e17fb6f45aec6e68e3b6
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Andrew Geissler <geissonator@yahoo.com>
|
|
Patrick Williams (1):
sdbus++: refactor enum handling for container-types
(From meta-phosphor rev: 59f86f07919de11c33b80f768522c6f4b56ea890)
Change-Id: I6b309f0f5ae12d84af84c01ea883b2e13764a3bd
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Andrew Geissler <geissonator@yahoo.com>
|
|
Lei YU (1):
Make interface and object non-movable
(From meta-phosphor rev: 48925d3dbfb5fb975f09fa352478e337d02b4564)
Change-Id: I279eaec4bc245a069a2c0a5f25a45507919a0c9e
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Andrew Geissler <geissonator@yahoo.com>
|
|
Rather than reference "python-foo" for recipe dependencies,
switch to "${PYTHON_PN}-foo" syntax, which is used throughout
other example Yocto recipes to aid a simple transition from
python2 to python3.
This variable is set up by pythonnative -> python-dir includes
already.
(From meta-phosphor rev: 4cd22437b72468a9ea23443532ddcc8d5dab1b1f)
Signed-off-by: Patrick Williams <patrick@stwcx.xyz>
Change-Id: Idde7f413bc911baad48851d531ab835963cec2f7
Signed-off-by: Brad Bishop <bradleyb@fuzziesquirrel.com>
|
|
Patrick Williams (8):
sdbus++: property: simplify enum handling
sdbus++: property: simplify local enum handling
sdbusplus: message: add type helpers for native enums
sdbusplus: message: read: add native enum support
sdbus++: interface: refactor enum-to-string conversion
sdbusplus: message: append: add native enum support
sdbus++: use native enums for message operations
build: remove interface.mako autoconf gen
Waqar Hameed (1):
sdbus++: Use list comprehension when parsing property types
(From meta-phosphor rev: 8b29782744fbc447c0d7ff59cf30d7862cf831a8)
Change-Id: If867f0e0769a00ec6f207cccde59a39008659431
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Brad Bishop <bradleyb@fuzziesquirrel.com>
|
|
Adrian Ambrożewicz (1):
Fix exception handling inside asio coroutine method_handler
Lei YU (1):
sdbusplus: Fix build on GCC 8 or ealier
(From meta-phosphor rev: a7257ae6636e8f7ded868d3f54535286c85bcf10)
Change-Id: I12284e7792028e80021a55e01853666d6d3c7df5
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Brad Bishop <bradleyb@fuzziesquirrel.com>
|
|
Adrian Ambrożewicz (1):
Fix compilation error in case unix_fd is used in async_method_call
(From meta-phosphor rev: e8a1a36c1e27c0d32cb67ab2b7a4f78cdb637e69)
Change-Id: Ifd4af7628f1e9196562dcea26a0f315e31d5efc1
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Brad Bishop <bradleyb@fuzziesquirrel.com>
|
|
Lei YU (1):
Emit adding/removing interfaces for object server
(From meta-phosphor rev: 9dd86f027461ae8b1979e10de1adc7410e07e4ef)
Change-Id: I180d151635b4fd47538ff315c3bcb4f9e30b55de
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Brad Bishop <bradleyb@fuzziesquirrel.com>
|
|
Lei YU (1):
Fix an issue found by cppcheck
Patrick Williams (2):
MAINTAINERS: add Patrick Williams
sdbus++: interface: fix indent of enum-string fn
Vernon Mauery (1):
Catch async errors so they do not throw
(From meta-phosphor rev: 0c270147f8a5c17ee748cde2b3feb087647e2390)
Change-Id: I327b9f6235e7de0365c0902203c7442961f50a1d
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Brad Bishop <bradleyb@fuzziesquirrel.com>
|
|
Brandon Kim (1):
README.md: Update documentation for using meson
(From meta-phosphor rev: 8d705c61923081eca95726d8e7980447b3029cfb)
Change-Id: I50773d2be2651ec5315dd2b757cb7d7a82869edf
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Brad Bishop <bradleyb@fuzziesquirrel.com>
|
|
Lei YU (1):
Make interface string public
(From meta-phosphor rev: 2796f6b44248a613be08abfcf6ab8c69d9d4922a)
Change-Id: I928782d6279cf7271aa3eeca630e78a2701b22af
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Brad Bishop <bradleyb@fuzziesquirrel.com>
|
|
Include pam-succeed-if to the rootfs file system. This will be
used to do pam_authenticate restriction based on group ownership.
Tested:
Along with pam-webserver changes with authenticate required, verified
that users belonging to redfish group are only allowed to login to
bmcweb.
(From meta-phosphor rev: 8c65b60518d8c447918371f3dbc7aceca35aaaa5)
Change-Id: Ie81c0c9c6a2d3188a5d74a845c2a584b9ad36101
Signed-off-by: Richard Marian Thomaiyar <richard.marian.thomaiyar@linux.intel.com>
Signed-off-by: Brad Bishop <bradleyb@fuzziesquirrel.com>
|
|
Lei YU (4):
Fix vtable CI error
Add valgrind suppression
maintainers: Fix dkodihal's email address
maintainers: Add Lei YU as maintainer
(From meta-phosphor rev: bb5698666658b53f3929d11ca83962957313fcd8)
Change-Id: I74883929e08872606eba4179647e533416506314
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Brad Bishop <bradleyb@fuzziesquirrel.com>
|
|
This fixes a bug where Linux-PAM asks for the new password three times
when changing the password. With this fix, PAM asks for the new password
and then only once more to confirm it - two times total.
This bug applies to the `passwd` command, to the expired password dialog
when signing into the console using an account which has an expired
password, and to other similar use of the PAM conversation function such
as changing the password during SSH login.
This does not affect the external behavior of the REST APIs or the webui
because they use automated PAM conversation functions which programmatically
supply the password as many times as it is requested.
The bug happens like this:
When PAM is asked to change a password via pam_chauthtok, it reads the
/etc/pam.d/common-password file and executes the first module, pam_ipmicheck.
This calls pam_get_authtok(pamh, PAM_AUTHTOK, &pass_new, NULL) which prompts
for the new password and then prompts again to verify they are the same.
The next module, pam_cracklib makes two calls: a call to
pam_get_authtok_noverify() followed by a call to pam_get_authtok_verify().
The call to pam_get_authtok_noverify() does NOT prompt because the new
password is already known to PAM, but the call to pam_get_authtok_verify()
unconditionally prompts to validate the password. That's why we see two
prompts to "Retype" the new password. The first is from pam_ipmicheck, and
second is from pam_cracklib/pam_get_authtok_verify.
The fix is to invoke pam_cracklib first and pam_ipmicheck second.
Then pam_cracklib does all if its prompting, and pam_ipmicheck gets what it
needs without prompting. The pam_ipmicheck module only checks the username
and password length, so switching the sequence of these modules should be
harmless.
Tested: yes, via the "passwd USER" command
(From meta-phosphor rev: a71db86192df0b0268db93e7ae6dc4633fce271e)
Signed-off-by: Joseph Reynolds <joseph-reynolds@charter.net>
Change-Id: I044df5731a69e45eca9597a345fa6d1b01041b58
Signed-off-by: Brad Bishop <bradleyb@fuzziesquirrel.com>
|
|
William A. Kennington III (1):
handle: Cleanup noexcept guarantees
(From meta-phosphor rev: b55bc0139d7c89ece0a951363bbe0fa7169131dc)
Change-Id: Ifd6edebf35d65d1e72337bb342d8c3e47206a7b5
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Brad Bishop <bradleyb@fuzziesquirrel.com>
|
|
pam_unix logs user name when sessions are established, quiet
the same in configuraiton. This is done to avoid logging user name
as logs will be exported as part of debug log dump etc, thereby
compramising sensitive information.
Also disallow nullok login from security point of it.
Tested:
1. Verified that session establishment are not recorded with user
name.
2. Verfieid webui, redfish, ipmi, ssh login works as expected.
(From meta-phosphor rev: 15a293b458ef2f013356f9746c0ac7a20e59c1c1)
Change-Id: Ic0fcdbfd9a5968fa55a27b7d2de379f8ba131cac
Signed-off-by: Richard Marian Thomaiyar <richard.marian.thomaiyar@linux.intel.com>
Signed-off-by: Brad Bishop <bradleyb@fuzziesquirrel.com>
|
|
Not querying password for invalid user name is security
issue and can be used to determine valid / invalid user names
in the system. Always proceed to password acceptance screen
for invalid user login attempt too. This commit configures
pam_tally2 to ignore unknown user and proceed to do password
check.
Tested:
Verified the same in bmc serial console login with invalid user
name and password was requested, before displaying login incorrect.
Note: dropbear handles this already and hence ssh will not exhibit
this behavior.
(From meta-phosphor rev: 356ec08b989c84d1d034c3ff283a6909658d9435)
Change-Id: I72483d26ad7b7c39068ac33b7387adf2b10a1a27
Signed-off-by: Richard Marian Thomaiyar <richard.marian.thomaiyar@linux.intel.com>
Signed-off-by: Brad Bishop <bradleyb@fuzziesquirrel.com>
|
|
Default credit for pam-cracklib was used, causing issue
in meeting minlen requirement for new password. i.e. 1 credit
will be applied if the password containts, digits, upper case,
or lower case etc, making minlen to be accepted. "fw6ev9" will
pass pam_cracklib earlier for minlen as password length was 6, +2
credit got substitued for lower case & digits use in the password.
Correcting the same now, by not providing any credit, and so the
minlen of 8 chars in the password must be met.
Tested
1. Tested password 'fw6ev9' fails to set
2. Tested password '0penBmc1' was accepted as it passes 8 character
Note: With this commit, the current default passwd for root user
'0penBmc' will work fine, but the same can't be used as password
during password update.
(From meta-phosphor rev: 0e67cd66f4f530b4ccccb2ab400ba2dabb3c0737)
Change-Id: Ieeebef45a655563ac7779627b1cf38ef6080c046
Signed-off-by: Richard Marian Thomaiyar <richard.marian.thomaiyar@linux.intel.com>
Signed-off-by: Brad Bishop <bradleyb@fuzziesquirrel.com>
|
|
Richard Marian Thomaiyar (1):
Allow async_method_call to provide opt message
(From meta-phosphor rev: 738ab0df153b75cf7be7cd0f7e9920db1c6e6e5f)
Change-Id: I11435dc4405adff04b3606ab5345a9140e7d2527
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Brad Bishop <bradleyb@fuzziesquirrel.com>
|
|
William A. Kennington III (4):
signal: Use callCheckErrno
handle: Make it possible to reference stored data
handle: Support for releasing management of values
util/str: Add string concatentation methods
(From meta-phosphor rev: 64de25902197895564789681368a260baf7225d7)
Change-Id: I5dbf739ed99a8ded6260c3f61a96c3ad3c33d0d6
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Brad Bishop <bradleyb@fuzziesquirrel.com>
|
|
William A. Kennington III (1):
autotools: Remove
(From meta-phosphor rev: 9f3ab4afad01a0e718f528728eaf27a6bac2f92b)
Change-Id: I4046348107f8ed11d6177d0f8ac840482d98d741
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Brad Bishop <bradleyb@fuzziesquirrel.com>
|