fuzz_auth.c - OpenGrok history log for /netbsd-src/external/bsd/pam-u2f/dist/fuzz/fuzz

Revision	Date	Author	Comments
# 540ca271	15-Jan-2025	christos <christos@NetBSD.org>	Import pam-u2f 1.3.1 (previous was 1.2.0) Version 1.3.1 (released 2025-01-14) - Fix incorrect usage of PAM_IGNORE (YSA-2025-01, CVE-2025-23013). - Changed return value when nouserok is enab Import pam-u2f 1.3.1 (previous was 1.2.0) Version 1.3.1 (released 2025-01-14) - Fix incorrect usage of PAM_IGNORE (YSA-2025-01, CVE-2025-23013). - Changed return value when nouserok is enabled and the user has no credentials, PAM_IGNORE is used instead of PAM_SUCCESS. - Hardened checks of authfile permissions. - Hardened checks for nouserok. - Improved debug messages. - Improved documentation. Version 1.3.0 (released 2023-03-14) - Add sanity checking of UV options to pamu2fcfg. - Add support for username expansion in the authfile path. - Improvements to the documentation. Version 1.2.1 (released 2022-05-11) - Fixed an issue where native credentials could be truncated, resulting in failure to authenticate or successful authentication with missing options. - Stricter parsing of sshformat credentials. - pamu2fcfg now allows a combination of the --username and --nouser options. - Improved documentation on FIDO2 options. show more ...
# 3ff1169c	24-Sep-2021	christos <christos@NetBSD.org>	Import version 1.2.0 * Version 1.2.0 (released 2021-09-22) Added support for EdDSA keys. Added support for SSH ed25519-sk keys. ** Added authenticator filtering based on user verification opti Import version 1.2.0 * Version 1.2.0 (released 2021-09-22) Added support for EdDSA keys. Added support for SSH ed25519-sk keys. Added authenticator filtering based on user verification options. Fixed an issue with privilege restoration on MacOS. Fixed an issue where credentials created with pamu2fcfg 1.0.8 or earlier were not handled correctly if their origin and appid differed. Miscellaneous improvements to the documentation. ** Miscellaneous minor bug fixes found by fuzzing. * Version 1.1.1 (released 2021-05-19) Fix an issue where PIN authentication could be bypassed (CVE-2021-31924). Fix an issue with nodetect and non-resident credentials. Fix build issues with musl libc. Add support for self-attestation in pamu2fcfg. ** Fix minor bugs found by fuzzing. * Version 1.1.0 (released 2020-09-17) Add support to FIDO2 (move from libu2f-host+libu2f-server to libfido2). Add support to User Verification Add support to PIN Verification Add support to Resident Credentials ** Add support to SSH credential format show more ...

Revision

Date

Author

Comments

# 540ca271

15-Jan-2025

christos <christos@NetBSD.org>

Import pam-u2f 1.3.1 (previous was 1.2.0)

Version 1.3.1 (released 2025-01-14)

- Fix incorrect usage of PAM_IGNORE (YSA-2025-01, CVE-2025-23013).
- Changed return value when nouserok is enab

Import pam-u2f 1.3.1 (previous was 1.2.0)

Version 1.3.1 (released 2025-01-14)

- Fix incorrect usage of PAM_IGNORE (YSA-2025-01, CVE-2025-23013).
- Changed return value when nouserok is enabled and the user has no
credentials, PAM_IGNORE is used instead of PAM_SUCCESS.
- Hardened checks of authfile permissions.
- Hardened checks for nouserok.
- Improved debug messages.
- Improved documentation.

Version 1.3.0 (released 2023-03-14)

- Add sanity checking of UV options to pamu2fcfg.
- Add support for username expansion in the authfile path.
- Improvements to the documentation.

Version 1.2.1 (released 2022-05-11)

- Fixed an issue where native credentials could be truncated, resulting
in failure to authenticate or successful authentication with missing
options.
- Stricter parsing of sshformat credentials.
- pamu2fcfg now allows a combination of the --username and --nouser
options.
- Improved documentation on FIDO2 options.

# 3ff1169c

24-Sep-2021

christos <christos@NetBSD.org>

Import version 1.2.0

* Version 1.2.0 (released 2021-09-22)
** Added support for EdDSA keys.
** Added support for SSH ed25519-sk keys.
** Added authenticator filtering based on user verification opti

Import version 1.2.0

* Version 1.2.0 (released 2021-09-22)
** Added support for EdDSA keys.
** Added support for SSH ed25519-sk keys.
** Added authenticator filtering based on user verification options.
** Fixed an issue with privilege restoration on MacOS.
** Fixed an issue where credentials created with pamu2fcfg 1.0.8 or earlier
were not handled correctly if their origin and appid differed.
** Miscellaneous improvements to the documentation.
** Miscellaneous minor bug fixes found by fuzzing.

* Version 1.1.1 (released 2021-05-19)
** Fix an issue where PIN authentication could be bypassed (CVE-2021-31924).
** Fix an issue with nodetect and non-resident credentials.
** Fix build issues with musl libc.
** Add support for self-attestation in pamu2fcfg.
** Fix minor bugs found by fuzzing.

* Version 1.1.0 (released 2020-09-17)
** Add support to FIDO2 (move from libu2f-host+libu2f-server to libfido2).
** Add support to User Verification
** Add support to PIN Verification
** Add support to Resident Credentials
** Add support to SSH credential format