From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <raorn@altlinux.org>
Date: Tue, 4 Aug 2009 21:02:43 +0400
From: "Alexey I. Froloff" <raorn@altlinux.org>
To: ALT Devel discussion list <devel@lists.altlinux.org>
Message-ID: <20090804170243.GA14341@altlinux.org>
MIME-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-sha1;
	protocol="application/pgp-signature"; boundary="RnlQjJ0d97Da+TV1"
Content-Disposition: inline
User-Agent: Mutt/1.5.20 (2009-06-23)
Subject: [devel] =?koi8-r?b?UTogcGFtKGF1dGgpIMkgc2V0X3BhbV9pdGVtKCkgLSDO?=
	=?koi8-r?b?xdQg0NXUyQ==?=
X-BeenThere: devel@lists.altlinux.org
X-Mailman-Version: 2.1.12
Precedence: list
Reply-To: ALT Linux Team development discussions <devel@lists.altlinux.org>
List-Id: ALT Linux Team development discussions <devel.lists.altlinux.org>
List-Unsubscribe: <https://lists.altlinux.org/mailman/options/devel>,
	<mailto:devel-request@lists.altlinux.org?subject=unsubscribe>
List-Archive: <http://lists.altlinux.org/pipermail/devel>
List-Post: <mailto:devel@lists.altlinux.org>
List-Help: <mailto:devel-request@lists.altlinux.org?subject=help>
List-Subscribe: <https://lists.altlinux.org/mailman/listinfo/devel>,
	<mailto:devel-request@lists.altlinux.org?subject=subscribe>
X-List-Received-Date: Tue, 04 Aug 2009 17:02:46 -0000
Archived-At: <http://lore.altlinux.org/devel/20090804170243.GA14341@altlinux.org/>
List-Archive: <http://lore.altlinux.org/devel/>
List-Post: <mailto:devel@altlinux.org>


--RnlQjJ0d97Da+TV1
Content-Type: text/plain; charset=koi8-r
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

=E5=D3=D4=D8 =CD=CF=C4=D5=CC=D8 (pam_pkcs11), =CB=CF=D4=CF=D2=CF=CD=D5 =CE=
=C5=CF=C2=D1=DA=C1=D4=C5=CC=D8=CE=CF =DA=CE=C1=D4=D8 =C9=CD=D1
=D0=CF=CC=D8=DA=CF=D7=C1=D4=C5=CC=D1.  =EF=CE =CD=C1=D0=D0=C9=D4 =D3=C5=D2=
=D4=C9=C6=C9=CB=C1=D4 =D3 =D4=CF=CB=C5=CE=C1 =D7 =CC=CF=C7=C9=CE (=CE=C1=D0=
=D2=C9=CD=C5=D2
=DE=C5=D2=C5=DA GECOS).  =F7=CF=D4 =CB=CF=C4:

483     if ( is_spaced_str(user) ) {
484       /*
485         if provided user is null or empty extract and set user
486         name from certificate
487       */
488         DBG("Empty login: try to deduce from certificate");
489         user=3Dfind_user(x509);
490         if (!user) {
=2E..
495         } else {
496           DBG1("certificate is valid and matches user %s",user);
497           /* try to set up PAM user entry with evaluated value */
498           rv =3D pam_set_item(pamh, PAM_USER,(const void *)user);
=2E..
505           chosen_cert =3D cert_list[i];
506           break; /* end loop, as find user success */
507       }
508     } else {

=EB=CF=C4 =D7=D9=D0=CF=CC=CE=D1=C5=D4=D3=D1, pam_set_item() =D5=D3=D0=C5=DB=
=CE=CF =CF=D4=D2=C1=C2=C1=D4=D9=D7=C1=C5=D4, =DC=D4=CF=D4 =CD=CF=C4=D5=CC=D8
=D7=CF=DA=D7=D2=C1=DD=C1=C5=D4 PAM_SUCCESS, =D4=CF=CC=D8=CB=CF =CE=C9 login=
, =CE=C9 gdm =D0=CF=CC=D8=DA=CF=D7=C1=D4=C5=CC=D1 =CE=C5
=D0=D5=D3=CB=C1=C0=D4.  pam_authenticate() =CF=D4=D7=C5=DE=C1=C5=D4 login'=
=D5 =DE=D4=CF "User not known
to underlying authentication module".  system-auth =D7=D9=C7=CC=D1=C4=C9=D4=
 =D4=C1=CB:

auth    [success=3D1 default=3Dignore]    pam_pkcs11.so
auth    required    pam_tcb.so shadow fork prefix=3D$2a$ count=3D8 nullok
auth    required    pam_permit.so

=F4=C5=CD =CE=C5 =CD=C5=CE=C5=C5 =C8=CF=D4=C5=CC=CF=D3=D8 =C2=D9 =CE=C5=D7=
=CF=DA=C2=D2=C1=CE=CE=CF =C4=CF=D3=D4=C9=C7=CE=D5=D4=D8 =D6=C5=CC=C1=C5=CD=
=CF=C7=CF?

--=20
Regards,
Sir Raorn.

--RnlQjJ0d97Da+TV1
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: Digital signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)

iEYEARECAAYFAkp4aa4ACgkQVqT7+fkT8wpTvQCdFaNN8XtPvnhkqwlGgJunUW/o
QgcAn1sM8mjzdFtGIc/Zvv7LM3BP0XIV
=kVrB
-----END PGP SIGNATURE-----

--RnlQjJ0d97Da+TV1--