- Update to 4.8.1:

* selinux: include stdio
  * man: don't suggest making groupmems user-writeable
  * Makefile: bail out on error in for loops
  * Adding logging of SSH_ORIGINAL_COMMAND to nologin
  * add new HOME_MODE login.defs option
  * Add tty logging to useradd
  * Useradd: make non-executable shell check only a warning
  * Update Dutch translation
  * user_busy: Do not mistake a regular user process for a namespaced one
  * Revert "Honor --sbindir and --bindir for binary installation"
- Remove shadow-4.8-shell-check.patch: included
- Remove shadow-4.8-selinux-include.patch: upstreamed

OBS-URL: https://build.opensuse.org/package/show/Base:System/shadow?expand=0&rev=86

shadow-4.8-selinux-include.patch

@@ -1,12 +0,0 @@
-Index: shadow-4.8/lib/selinux.c
-===================================================================
---- shadow-4.8.orig/lib/selinux.c
-+++ shadow-4.8/lib/selinux.c
-@@ -31,6 +31,7 @@
- 
- #ifdef WITH_SELINUX
- 
-+#include <stdio.h>
- #include "defines.h"
- 
- #include <selinux/selinux.h>

shadow-4.8-shell-check.patch

@@ -1,43 +0,0 @@
-From 4ed08824e511fa5247006c71490b0440e1c17319 Mon Sep 17 00:00:00 2001
-From: Tomas Mraz <tmraz@fedoraproject.org>
-Date: Thu, 16 Jan 2020 12:55:30 +0100
-Subject: [PATCH] Make the check for non-executable shell only a warning.
-
-Although it is a good idea to check for an inadvertent typo
-in the shell name it is possible that the shell might not be present
-on the system yet when the user is added.
----
- src/useradd.c | 15 +++++++++++----
- 1 file changed, 11 insertions(+), 4 deletions(-)
-
-diff --git a/src/useradd.c b/src/useradd.c
-index c29ae949..a679392d 100644
---- a/src/useradd.c
-+++ b/src/useradd.c
-@@ -1328,15 +1328,22 @@ static void process_flags (int argc, char **argv)
- 				if (   ( !VALID (optarg) )
- 				    || (   ('\0' != optarg[0])
- 				        && ('/'  != optarg[0])
--				        && ('*'  != optarg[0]) )
--				    || (stat(optarg, &st) != 0)
--				    || (S_ISDIR(st.st_mode))
--				    || (access(optarg, X_OK) != 0)) {
-+				        && ('*'  != optarg[0]) )) {
- 					fprintf (stderr,
- 					         _("%s: invalid shell '%s'\n"),
- 					         Prog, optarg);
- 					exit (E_BAD_ARG);
- 				}
-+				if (    '\0' != optarg[0]
-+				     && '*'  != optarg[0]
-+				     && strcmp(optarg, "/sbin/nologin") != 0
-+				     && (   stat(optarg, &st) != 0
-+				         || S_ISDIR(st.st_mode)
-+				         || access(optarg, X_OK) != 0)) {
-+					fprintf (stderr,
-+					         _("%s: Warning: missing or non-executable shell '%s'\n"),
-+					         Prog, optarg);
-+				}
- 				user_shell = optarg;
- 				def_shell = optarg;
- 				sflg = true;

shadow-4.8.1.tar.xz

@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:a3ad4630bdc41372f02a647278a8c3514844295d36eefe68ece6c3a641c1ae62
+size 1611196

shadow-4.8.1.tar.xz.asc

@@ -0,0 +1,11 @@
+-----BEGIN PGP SIGNATURE-----
+
+iQEzBAABCgAdFiEE8dCNt3gYW/eEAC3/6f7qBqheP50FAl4qDlEACgkQ6f7qBqhe
+P51Lfwf/b2gxtqo9WRUTOhau4kCy+zDbg3S/K7ZD/20I2t205FNCOyV+cR4Q/PRA
++hBLFsA/WAVqZm0/3re09VDV0eaBpI7hgNF0JFODawIixKdLVff9mbfbLdgzy2Dl
+IvbNrUVDJV1wSlEJLIeUpUT4ClFaiExM/XaCvHSUUbRsJ5cutH2wt0neNC8mJHMu
+srXoCp8lb4fT+BDgRKoGA6RMvnJSkExBbhrRqaARWWCGnS++5oJiD7UwPAOu9Imb
+LtouVitkrjrpQncnQN+zCaKwyTGw/xlQyl0z86DXWbvhnTwUeeWZbyfRAglIsSkk
+DRpWh2m7ejcvf1pGt66UBuMNr0yb1w==
+=8I3q
+-----END PGP SIGNATURE-----

shadow-4.8.tar.xz

@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:64b46683b9c1f35b2cd2da9fa87a1383917666e85a56b35e081c7257d10dac64
-size 1609060

shadow-4.8.tar.xz.asc

@@ -1,11 +0,0 @@
------BEGIN PGP SIGNATURE-----
-
-iQEzBAABCgAdFiEE8dCNt3gYW/eEAC3/6f7qBqheP50FAl3j/d0ACgkQ6f7qBqhe
-P5185Qf9E2/IuxNWXdL30l+rA9w5WAIiQ61UHf/Z4HXPaVQnSmjGruHeuCbEDhyF
-Lcqqmhfi84CdFSJe3F+0JrpgFQ1wfc+j/n1jPjrtpjtje7cuuwFTTVx8LDL+hULl
-ylQKneQdDfX1vZnmcD5Us8YifG+eiTOHsLnk+HpgRekMpr6mIzJm8SkyJiVp8kAO
-Rfp60+XlCW4Q0bExQ9Ig4ElEagQTODwQ6xPxM5pHvc/pEvJyH/2fq9BzSfDRMU8q
-h9pO3gDgXp0A7hmkBlQVPsG9vXCwNuvrAj4p7TTYqdn03uTTcknFqhoECuQjJ+BM
-z2WaKWY2NAn53AWzABsoaPW6t8Y+cg==
-=4/Ig
------END PGP SIGNATURE-----

shadow.changes

@@ -1,3 +1,20 @@
+-------------------------------------------------------------------
+Fri Jan 24 08:09:23 UTC 2020 - Michael Vetter <mvetter@suse.com>
+
+- Update to 4.8.1:
+  * selinux: include stdio
+  * man: don't suggest making groupmems user-writeable
+  * Makefile: bail out on error in for loops
+  * Adding logging of SSH_ORIGINAL_COMMAND to nologin
+  * add new HOME_MODE login.defs option
+  * Add tty logging to useradd
+  * Useradd: make non-executable shell check only a warning
+  * Update Dutch translation
+  * user_busy: Do not mistake a regular user process for a namespaced one
+  * Revert "Honor --sbindir and --bindir for binary installation"
+- Remove shadow-4.8-shell-check.patch: included
+- Remove shadow-4.8-selinux-include.patch: upstreamed
+
 -------------------------------------------------------------------
 Mon Jan 20 10:36:20 UTC 2020 - Michael Vetter <mvetter@suse.com>
 

shadow.spec

@@ -23,7 +23,7 @@
 %endif
 
 Name:           shadow
-Version:        4.8
+Version:        4.8.1
 Release:        0
 Summary:        Utilities to Manage User and Group Accounts
 License:        BSD-3-Clause AND GPL-2.0-or-later
@@ -61,10 +61,6 @@ Patch7:         shadow-4.1.5.1-logmsg.patch
 Patch13:        shadow-login_defs-comments.patch
 # PATCH-FEATURE-SUSE shadow-login_defs-suse.patch kukuk@suse.com -- Customize login.defs.
 Patch14:        shadow-login_defs-suse.patch
-# PATCH-FIX-UPSTREAM shadow-4.8-selinux-include.patch mvetter@suse.com -- https://github.com/shadow-maint/shadow/pull/200
-Patch15:        shadow-4.8-selinux-include.patch
-# PATCH-FEATURE mvetter@suse.com -- bsc#1160729 https://github.com/shadow-maint/shadow/pull/210
-Patch16:        shadow-4.8-shell-check.patch
 # PATCH-FIX-SUSE disable_new_audit_function.patch adam.majer@suse.de -- Disable newer libaudit functionality for older distributions.
 Patch20:        disable_new_audit_function.patch
 BuildRequires:  audit-devel > 2.3
@@ -110,8 +106,6 @@ group accounts.
 %patch7
 %patch13
 %patch14
-%patch15 -p1
-%patch16 -p1
 %if 0%{?suse_version} < 1330
 %patch20 -p1
 %endif