Jasper Lievisse Adriaanse
68fc2e8b5f
Use bsd_auth(3) instead of PAM on OpenBSD
...
Also apply two security measures for OpenBSD:
- use explicit_bzero(3)
- mlock(2) works for non-root users too
2017-04-17 15:06:59 +02:00
Jasper Lievisse Adriaanse
15973d1f52
Move all PAM code behind UES_PAM and enable that by default.
2017-04-15 09:49:41 +02:00
Jasper Lievisse Adriaanse
c1de117825
Rename all PAM-independant variables/comments.
...
there is nothing PAM-specific about pam_state or pam_state_t. therefore
rename them to be authenticator independant.
2017-04-15 09:44:09 +02:00
Nicolò Balzarotti
7504e16527
Add Enter on C-m ( #103 )
2016-11-09 13:23:01 -08:00
eplanet
1c97a84847
Displaying locking message when grabbing the pointer/keyboard. ( #88 )
...
Display "locking…" message when grabbing the pointer/keyboard,
after at least 250 ms of unfruitful attempts. If grabbing
eventually fails, application will not fork and return 1.
2016-09-27 18:39:52 -07:00
Diogo Ferreira
fd2215b0f0
i3lock: Stop leaking the image_path dup. ( #93 )
2016-09-13 21:59:54 +02:00
koebi
17b7b77893
unlock automatically after authentication failure ( #90 )
...
This will make i3 unlock automatically after authentication failure and
correct input without pressing <Enter> again after the "wrong"-indicator
is gone.
2016-09-04 18:22:49 +02:00
Florian Zipperle
cca7d4e6c3
Removed obsolete inactivity timeout ( #84 )
...
* Removed obsolete inactivity timeout
2016-07-20 07:50:07 +01:00
Michael Stapelberg
ce1c5cecc0
clang-format-3.5
...
Not sure why travis didn’t warn about this on the PR. The only reference
to the PR I can find is https://travis-ci.org/i3/i3lock/builds/130470377
2016-06-03 17:46:29 +02:00
Christoph Ruegge
463d38fed6
Add support for `xss-lock --transfer-sleep-lock' ( #75 )
...
Add support for `xss-lock --transfer-sleep-lock'
2016-05-25 22:21:12 +02:00
Karl Tarbe
9a7604bb35
Allow CTRL+J as enter and CTRL+H as backspace ( #72 )
...
fixes #71
2016-04-30 11:25:51 +01:00
Michael Stapelberg
59705b05b5
Show unlock indicator if password was entered during PAM verification
...
fixes #51
2015-12-25 22:10:06 +01:00
Michael Stapelberg
0bdc0c644d
Eat XKB_KEY_Delete and XKB_KEY_KP_Delete (Thanks bebehei)
...
fixes #50
2015-12-25 15:44:46 +01:00
Michael Stapelberg
cc73d88aea
Remove libxkbfile dependency from README.md/comments
...
It has not been in use since commit 7eb43aeabd
2015-11-07 14:51:02 +01:00
Michael Stapelberg
688d49d5b8
fix pam_securetty: set PAM_TTY to getenv("DISPLAY")
...
fixes #43
2015-11-05 23:22:08 +01:00
Michael Stapelberg
929e541fb7
Remove DPMS support in favor of a wrapper script and xset(1).
...
fixes #32
2015-08-11 21:50:42 +02:00
Kenneth Lyons
d91c20a9f2
Indicate that the --inactivity-timeout option takes an argument.
2015-07-02 14:45:30 -07:00
Ingo Bürk
b4c97bddf7
Only redraw the screen if the unlock indicator is actually used.
...
fixes #12
2015-04-24 23:36:24 +02:00
Deiz
dda29f93a1
Update copyright notices and get rid of ranges
...
The script used to make these changes can be found at:
https://gist.github.com/Deiz/32322020f76d23e2bf8f
2015-04-21 11:53:09 -04:00
Deiz
b4f6dae10e
List generic pressed modifiers on failure
2015-03-29 16:22:31 -04:00
Alexandre Boeglin
a9ecf1e0c9
Add capslock and numlock indicators
...
When the unlock indicator warns the user that a password was typed
wrong, it now also reports the state of the capslock and numlock
modifiers.
Signed-off-by: Alexandre Boeglin <alex@boeglin.org>
2015-03-28 14:50:05 -04:00
James Cassidy
aaad9c0e7a
refresh pam credentials on successful authentication
2015-03-26 09:26:48 -04:00
Michael Stapelberg
68b78a7f57
clang-format -i **/*.[ch]
...
From here on, we’ll use clang-format to automatically format the source.
This has worked well in i3, so we are introducing it for i3lock.
2015-03-16 18:47:16 +01:00
Daniel Otero
86323f6e04
Update the key symbol if the composing ends.
2015-02-12 21:38:37 +01:00
Daniel Otero
9e48c74be1
Avoid handle a keysym if the compose state gets cancelled
...
This is the approach taken by libX11, and feels more consistent.
2015-02-12 11:22:58 +01:00
Daniel Otero
562e824246
Remove xkb_context initialization code from load_compose_table
...
xkb_context is guaranteed to be initializated from load_keymap.
2015-02-12 11:12:38 +01:00
Daniel Otero
ef3ef30400
Add support for Compose and dead-keys with libxkbcommon
2015-02-12 00:37:23 +01:00
Martin Stiborsky
665ce3e215
getpwuid call moved
2015-01-06 00:02:23 +01:00
Martin Stiborsky
6ffe86ca12
null check for getpwuid and pw_name
2015-01-05 22:54:32 +01:00
Martin Stiborsky
7d52029ae3
removed the whoami function, replaced with an inline getpwuid call
2015-01-05 19:54:48 +01:00
Martin Stiborsky
a3839aa69f
getting current user with whoami like function rather than from env variable
2015-01-05 11:46:11 +01:00
Neodyblue
8a630bec65
Ignore password validation is pam is in wrong state
...
This add a protection against wrong password spamming
2014-10-13 17:53:49 +02:00
koebi
0cbf483cb4
implemented logging the number of failed attempts
...
This closes #1243
2014-08-24 23:27:00 +02:00
Michael Stapelberg
7f450a52f6
Die when the X11 connection breaks during runtime (Thanks Eduan)
2014-08-21 09:34:03 +02:00
Michael Stapelberg
4724d4abf0
remove obsolete xkb_state_update_key() calls (Thanks Ran)
2014-06-21 16:32:18 +02:00
Michael Stapelberg
1b89709ae7
listen for XKB events instead of the MappingNotify event (Thanks Ran)
2014-06-21 16:32:18 +02:00
Michael Stapelberg
7eb43aeabd
little cleanups thanks to Ran Benita’s review
2014-06-21 16:32:18 +02:00
Michael Stapelberg
0beb9a47b1
use libxkbcommon-x11 instead of libX11
2014-06-21 16:32:18 +02:00
Vytautas Šaltenis
e2dd1543e9
Cleanup scattered timer calls to use macros
2014-03-23 18:56:00 +01:00
Vytautas Šaltenis
4ff1d7fc5c
Ignore empty passwd after repeated Enter keypress
...
When no ignore_empty_password flag is specified, but Enter key is held
down for some time, i3lock enters a finite, but hours-long loop
verifying empty password. Don't do that, skip empty password
verification if nothing was pressed after last Enter keypress.
Again, making the software cat-proof.
2014-03-23 10:07:03 +01:00
Vytautas Šaltenis
e5f86339bc
Fix typo
2014-03-23 10:02:10 +01:00
Vytautas Šaltenis
52541fb7ee
Discard half-entered passwd after some inactivity
...
When you start typing a password and then wander off, let's discard that
attempt after a few minutes of inactivity (and turn off the monitors if
dpms is on).
This is a real actual case of making the software cat-proof: when my cat
treads over the keyboard at night, I don't want the monitors to shine
for the rest of the night.
2014-03-23 10:01:59 +01:00
Vytautas Šaltenis
c7cd4cd3b5
Delay to turn off the screen after wrong passwd
...
Also add flag for number of seconds to wait for it.
When user cancels the password or enters a wrong one, i3lock will wait
for some time before putting the monitors back to sleep. By default it's
30 seconds, but this flag allows to control that.
2014-03-23 09:32:44 +01:00
TheKK
15ddf304be
Replace '1' with "EXIT_FAILURE"
2014-03-16 16:25:15 +01:00
Vytautas Šaltenis
2509c987d1
Extract start/stop timer code to reusable funcs
2014-03-11 09:11:20 +01:00
Vytautas Šaltenis
d91fdc368e
Extract if(dpms) calls to wrapper functions
2014-03-11 09:09:02 +01:00
Philippe Virouleau
6c34f6aa40
Turn on the screen on successful authentication
...
As described in ticket #1114 , the screen may be left turned off on successful
authentication. This commit fixes this behaviour by turning the screen back on
after the authentication.
Fixes #1114
2013-11-12 08:24:14 +01:00
Michael Stapelberg
ac8bbad523
Re-raise i3lock when obscured in a separate process
...
This is cleaner than commit a305e62
(running authentication in a
separate process) because we don’t lose the feature that X11 will buffer
KeyPresses for us while the process blocks on PAM. See
http://cr.i3wm.org/patch/305 for the amount of code (and new known bugs)
that would have to be introduced to make a305e62
work.
2013-11-10 20:43:08 +01:00
Michael Stapelberg
d7fd058f0c
Revert "Run authentification in different process"
...
This reverts commit a305e622a6
.
In the next commit, the same functionality will be achieved in a cleaner
way.
2013-11-10 20:42:53 +01:00
Michael Stapelberg
df760b6e9e
Revert "Bug fix: Call clear_input() when the password is wrong."
...
This reverts commit 33d953fbdf
,
in preparation for reverting commit a305e62
2013-11-10 20:42:39 +01:00