<feed xmlns='http://www.w3.org/2005/Atom'>
<title>libnss-tacplus.git/nss_tacplus.c, branch rolling</title>
<subtitle>NSS plugin to lookup tacacs client username, and match mapped user after login (mirror of https://github.com/vyos/libnss-tacplus.git)
</subtitle>
<id>https://git.amelek.net/vyos/libnss-tacplus.git/atom?h=rolling</id>
<link rel='self' href='https://git.amelek.net/vyos/libnss-tacplus.git/atom?h=rolling'/>
<link rel='alternate' type='text/html' href='https://git.amelek.net/vyos/libnss-tacplus.git/'/>
<updated>2026-01-20T05:23:09+00:00</updated>
<entry>
<title>T8083: Review comments incorporate</title>
<updated>2026-01-20T05:23:09+00:00</updated>
<author>
<name>Ritika Chopra</name>
<email>r.chopra@vyos.io</email>
</author>
<published>2026-01-08T05:02:25+00:00</published>
<link rel='alternate' type='text/html' href='https://git.amelek.net/vyos/libnss-tacplus.git/commit/?id=c3a10531b21f2135ae3fd583116cf799e6c21fd9'/>
<id>urn:sha1:c3a10531b21f2135ae3fd583116cf799e6c21fd9</id>
<content type='text'>
- Replace tabs with spaces
- Handle corner case when no of users get changed in between processing
</content>
</entry>
<entry>
<title>T8083: Address memory leaks in the related code leg</title>
<updated>2026-01-06T17:13:14+00:00</updated>
<author>
<name>Ritika Chopra</name>
<email>r.chopra@vyos.io</email>
</author>
<published>2026-01-06T17:13:14+00:00</published>
<link rel='alternate' type='text/html' href='https://git.amelek.net/vyos/libnss-tacplus.git/commit/?id=3a5c91e6fc4ba64d5e922a7f3b5d1b5ed38ba3f7'/>
<id>urn:sha1:3a5c91e6fc4ba64d5e922a7f3b5d1b5ed38ba3f7</id>
<content type='text'>
</content>
</entry>
<entry>
<title>T8083:Fix NSS TACACS group buffer truncation</title>
<updated>2026-01-06T17:07:56+00:00</updated>
<author>
<name>Ritika Chopra</name>
<email>r.chopra@vyos.io</email>
</author>
<published>2026-01-06T17:07:56+00:00</published>
<link rel='alternate' type='text/html' href='https://git.amelek.net/vyos/libnss-tacplus.git/commit/?id=9a57723bb67d9a9b8b27f42262e10b2b03658b35'/>
<id>urn:sha1:9a57723bb67d9a9b8b27f42262e10b2b03658b35</id>
<content type='text'>
</content>
</entry>
<entry>
<title>config: improve line buffer for config file from 256 -&gt; 2048 byte</title>
<updated>2024-12-15T09:41:23+00:00</updated>
<author>
<name>Christian Breunig</name>
<email>christian@breunig.cc</email>
</author>
<published>2024-12-15T08:37:51+00:00</published>
<link rel='alternate' type='text/html' href='https://git.amelek.net/vyos/libnss-tacplus.git/commit/?id=9a80c753dc698405e427f413851981694c9db7d8'/>
<id>urn:sha1:9a80c753dc698405e427f413851981694c9db7d8</id>
<content type='text'>
Support extensive length of exclude_users to avoid truncation in VyOS.
</content>
</entry>
<entry>
<title>Import version 1.0.4-cl5.1.0u11 from Cumulus Linux</title>
<updated>2024-04-29T18:58:47+00:00</updated>
<author>
<name>Christian Breunig</name>
<email>christian@breunig.cc</email>
</author>
<published>2024-04-29T18:58:47+00:00</published>
<link rel='alternate' type='text/html' href='https://git.amelek.net/vyos/libnss-tacplus.git/commit/?id=049d2843b521d15e2f355430d94eb9d2e83311be'/>
<id>urn:sha1:049d2843b521d15e2f355430d94eb9d2e83311be</id>
<content type='text'>
</content>
</entry>
<entry>
<title>Another reset config bug if exclude_users not in config file.</title>
<updated>2017-05-30T22:08:42+00:00</updated>
<author>
<name>Dave Olson</name>
<email>olson@cumulusnetworks.com</email>
</author>
<published>2017-05-26T00:35:41+00:00</published>
<link rel='alternate' type='text/html' href='https://git.amelek.net/vyos/libnss-tacplus.git/commit/?id=6f721d9b26465ffd0e05a2f075ad76dd70c4fe8c'/>
<id>urn:sha1:6f721d9b26465ffd0e05a2f075ad76dd70c4fe8c</id>
<content type='text'>
</content>
</entry>
<entry>
<title>When re-using a secret key for multiple servers, strdup, don't copy</title>
<updated>2017-05-25T20:52:34+00:00</updated>
<author>
<name>Dave Olson</name>
<email>olson@cumulusnetworks.com</email>
</author>
<published>2017-05-25T19:58:38+00:00</published>
<link rel='alternate' type='text/html' href='https://git.amelek.net/vyos/libnss-tacplus.git/commit/?id=86f2c6782d0e59e633ec7ae44132fc4f46a32aaa'/>
<id>urn:sha1:86f2c6782d0e59e633ec7ae44132fc4f46a32aaa</id>
<content type='text'>
Otherwise when reconfiguring when we detect a changed config
file, we'll double free the strdup'ed memory.
</content>
</entry>
<entry>
<title>Removed trailing whitespace</title>
<updated>2017-05-24T02:01:32+00:00</updated>
<author>
<name>Dave Olson</name>
<email>olson@cumulusnetworks.com</email>
</author>
<published>2017-05-24T02:01:32+00:00</published>
<link rel='alternate' type='text/html' href='https://git.amelek.net/vyos/libnss-tacplus.git/commit/?id=42330b84d2c146abb1b3118670d25f24f9a2b23d'/>
<id>urn:sha1:42330b84d2c146abb1b3118670d25f24f9a2b23d</id>
<content type='text'>
</content>
</entry>
<entry>
<title>Support using and returning per-tacacs user homedir</title>
<updated>2017-05-24T00:05:52+00:00</updated>
<author>
<name>Dave Olson</name>
<email>olson@cumulusnetworks.com</email>
</author>
<published>2017-03-24T05:42:24+00:00</published>
<link rel='alternate' type='text/html' href='https://git.amelek.net/vyos/libnss-tacplus.git/commit/?id=9b056a2a66ec7006d86121509ef1049c7f6f0725'/>
<id>urn:sha1:9b056a2a66ec7006d86121509ef1049c7f6f0725</id>
<content type='text'>
Get setting from map on whether login was set up to use per-tacacs
user homedir, rather than the homedir from the local tacacsN users.

The mkhomedir_helper program is used in pam_tacplus to create home
directory (like pam_mkhomedir.so) when user homedir is requested, but
the home directory does not exist.

The config file setting in this code is not used when using map and the user
is found in map; we then use the setting from the map.
When mapping doesn't exist, then use our own config setting.

user_homedirs is ignored if shell is a restricted shell (as set up by
tacplus-restrict) because we need to honor the per-command
authorization setup in that case.

Updated changelog

Also fixed up the spelling of dev-support
</content>
</entry>
<entry>
<title>Fix attribute memory leak, clarified authorization message</title>
<updated>2017-05-23T23:42:59+00:00</updated>
<author>
<name>Dave Olson</name>
<email>olson@cumulusnetworks.com</email>
</author>
<published>2017-05-19T22:48:43+00:00</published>
<link rel='alternate' type='text/html' href='https://git.amelek.net/vyos/libnss-tacplus.git/commit/?id=1e79d33bc397c0a9f30512a624ce51153e981f89'/>
<id>urn:sha1:1e79d33bc397c0a9f30512a624ce51153e981f89</id>
<content type='text'>
Fixed attribute memory leak, and also don't force the *attr to NULL
as part of that, use the normal mechanisms.

Added more info to authorization failure message, and made clearer.

Only print "local lookup" part of message if debug &gt; 1, since
it's mostly useful for developers.
</content>
</entry>
</feed>
