Compare commits
1 Commits
| Author | SHA256 | Date | |
|---|---|---|---|
| cbacaf954b |
BIN
shadow-4.17.2.tar.xz
(Stored with Git LFS)
Normal file
BIN
shadow-4.17.2.tar.xz
(Stored with Git LFS)
Normal file
Binary file not shown.
11
shadow-4.17.2.tar.xz.asc
Normal file
11
shadow-4.17.2.tar.xz.asc
Normal file
@@ -0,0 +1,11 @@
|
||||
-----BEGIN PGP SIGNATURE-----
|
||||
|
||||
iQEzBAABCgAdFiEEqb0/8XByttt4D8+UNXDaFycKziQFAmeCkssACgkQNXDaFycK
|
||||
ziQhuwf/bcEJKV+x66isorvoeGbqdtW7oGz3ueu8501X2lO5OZgxo6oseq27ynfc
|
||||
xG6RBMnvkm94pjw3iCqEjYwyJ30js+HVWd6cN7T6GyAGdeYRMvHEfpww7IR1Py3n
|
||||
6ZgYR4hcLu0T6zVg3bwUNtn29QCINo1SdS7PtsCBBDkwm8WeR+xHsSU+eV3kvNF8
|
||||
CID4wvwMW7lCBetADbI+ZvbKBvDkfUBAkJWm/a/wLJrztwTw307xOvyR5P5QjoIn
|
||||
ZMtmcmsWL+5Y13OoUccdUm9jDOTPILYtC7Y7y2Nolh0qOsCnMKzD0D11KDIoPlfc
|
||||
Rymwesu4+adiSYUfKvqabkb3c/GrbA==
|
||||
=lu9c
|
||||
-----END PGP SIGNATURE-----
|
||||
@@ -1,3 +0,0 @@
|
||||
version https://git-lfs.github.com/spec/v1
|
||||
oid sha256:add4604d3bc410344433122a819ee4154b79dd8316a56298c60417e637c07608
|
||||
size 2347912
|
||||
@@ -1,11 +0,0 @@
|
||||
-----BEGIN PGP SIGNATURE-----
|
||||
|
||||
iQEzBAABCgAdFiEEqb0/8XByttt4D8+UNXDaFycKziQFAmhbDFQACgkQNXDaFycK
|
||||
ziQBNQgAzFSwyCM6MpR9au15EeF3dw0auq6iI9ibL2ZLfZQII+tT0Mzv+LY5ioLR
|
||||
qf4DVDqCyZWz3FMfmM93aXtKg+Vb8ukkhmhIFmWZjJDb2yZIh4bQOo+rVlQa+GBk
|
||||
kCMftuNPE/58AhH030nt917EXE6Yz4JkyX0UDcJkqWKdTPWfl9OjHQfiFXuGHlsr
|
||||
HJT4OVZSkAOKtZtKvjqD00dEvSsQ0GpeCTLgtQ2RgWS1Sfwvmrsc2nIHQXhkWmKx
|
||||
sTfhiHGL10v9rDHgtK3KccdfkqtSdPqDDO6T0DQVg0gwqawB7b0WhixVqrGxGAfh
|
||||
aOVD1Sy9qcQlSBT8kJIuXyAotTB75w==
|
||||
=FJBB
|
||||
-----END PGP SIGNATURE-----
|
||||
@@ -148,3 +148,15 @@ Index: etc/login.defs
|
||||
+# environment variables HOME, SHELL and USER.
|
||||
+#LOGIN_ENV_SAFELIST
|
||||
+
|
||||
Index: lib/getdef.c
|
||||
===================================================================
|
||||
--- lib/getdef.c.orig
|
||||
+++ lib/getdef.c
|
||||
@@ -76,6 +76,7 @@ struct itemdef {
|
||||
#define FOREIGNDEFS \
|
||||
{"ALWAYS_SET_PATH", NULL}, \
|
||||
{"ENV_ROOTPATH", NULL}, \
|
||||
+ {"LOGIN_ENV_SAFELIST", NULL}, \
|
||||
{"LOGIN_KEEP_USERNAME", NULL}, \
|
||||
{"LOGIN_PLAIN_PROMPT", NULL}, \
|
||||
{"MOTD_FIRSTONLY", NULL}, \
|
||||
|
||||
149
shadow.changes
149
shadow.changes
@@ -1,47 +1,3 @@
|
||||
-------------------------------------------------------------------
|
||||
Wed Jun 25 04:20:14 UTC 2025 - Michael Vetter <mvetter@suse.com>
|
||||
|
||||
- Update to 4.18.0:
|
||||
* CI: purge man-db #1241
|
||||
* passwd: document exit code when PAM has errored #1244
|
||||
* Man patches #1175
|
||||
* Quick fix: define E_PAM_ERR in lib/pam_pass.c #1245
|
||||
* Accept /usr/sbin/nologin as an alternate to /sbin/nologin #1246
|
||||
* Add LOGIN_ENV_SAFELIST to FOREIGNDEFS #1248
|
||||
* ci: add gawk as a fedora dependency #1252
|
||||
* man/useradd.8.xml: fix the CREATE_HOME description #1251
|
||||
* lib/getdate.y: Restrict the date formats that we support #1238
|
||||
* newuidmap: better error logging on failure #1254
|
||||
* Extend basic test cases to check shadow and gshadow entries #1237
|
||||
* lib/sizeof.h: Make sure STRLEN() only accepts string literals #1260
|
||||
* Add strprefix(), and use it instead of its pattern #1152
|
||||
* src/: Simplify, using strpbrk(3) #1167
|
||||
* lib/string/strdup/: STRNDUPA(): Reimplement in terms of strndupa(3) #1189
|
||||
* Remove dead beef #1230
|
||||
* lib/atoi/a2i/: Simplify these macros #1137
|
||||
* strtolower(): Add API, and use it instead of its pattern #1211
|
||||
* lib/: sget*ent(): Simplify #1146
|
||||
* fields #1150
|
||||
* yacc(1) is a dead language; bury it deep in the ground #1217
|
||||
* Test expiration date #1233
|
||||
* [scp] Add strcaseprefix(), and use it instead of its pattern #1262
|
||||
* valid_field(): Improve readability #1208
|
||||
* lib/, src/, tests/: Use the standard countof() instead of our NITEMS() #1259
|
||||
* lib/fs/mkstemp/, src/: Move fmkomstemp() to separate files under
|
||||
lib/fs/mkstemp/, and split into mkomstemp() #1139
|
||||
* [x][v]aprintf(): Add APIs, and use them instead of [x][v]asprintf(3) #1168
|
||||
* lib/get_pid.c: pid_t is a signed integer #1264
|
||||
* src/newusers.c: Fix off-by-one benign bug in array declaration #1266
|
||||
* Add some wrappers for usual loops around strsep(3) #1155
|
||||
* lib/fs/readlink/areadlink.h: areadlink(): Avoid inconditionally using PATH_MAX #1222
|
||||
* configure: Fix typo #1268
|
||||
* Pre-release 4.18.0-rc1 #1270
|
||||
* Update man pages for chage, shadow, passwd #1243
|
||||
* contrib/: Burn it all #1274
|
||||
* Pre-release 4.18.0-rc2 #1275
|
||||
* Release 4.18.0 #1277
|
||||
- Update shadow-util-linux.patch: See #1248
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Wed Apr 9 00:05:49 UTC 2025 - Stanislav Brabec <sbrabec@suse.com>
|
||||
|
||||
@@ -52,111 +8,6 @@ Wed Apr 9 00:05:49 UTC 2025 - Stanislav Brabec <sbrabec@suse.com>
|
||||
multibuild file compatible with quilt. Make it working with new
|
||||
quilt.
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Thu Mar 20 06:48:16 UTC 2025 - Michael Vetter <mvetter@suse.com>
|
||||
|
||||
- Update to 4.17.4:
|
||||
* Revert "lib/, src/: Use local time for human-readable dates"
|
||||
* lib/getdate.y: Ignore time-zone information and use UTC
|
||||
* src/chfn.c: Partially revert "lib/, src/: Use strsep(3) instead of its pattern"
|
||||
* src/chfn.c: Use stpsep() instead of its pattern
|
||||
* src/chfn.c: Add local variable to refer to the separated field
|
||||
* src/chfn.c: copy_field(): Rename local variable
|
||||
* lib/commonio.c: Rely on the POSIX.1-2008 behavior of realpath(3)
|
||||
* lib/fs/readlink/: readlinknul(): Use ssize_t to simplify
|
||||
* autogen.sh: Promote -Wsign-compare to an error
|
||||
* lib/sizeof.h: ssizeof(): Add signed variant of sizeof
|
||||
* src/lastlog.c: Use ssizeof() to avoid a -Wsign-compare diagnostic
|
||||
* tests/unit/test_xasprintf.c: Fix sign-mismatch diagnostic
|
||||
* configure.ac: stop checking for utmp location
|
||||
* configure.ac: be deterministic about passwd location
|
||||
* lib/, src/: update audit messages
|
||||
* lib/: audit function for groups
|
||||
* src/: update group audit messages
|
||||
* doc/: Remove list of distributions
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Mon Feb 24 15:52:45 UTC 2025 - Michael Vetter <mvetter@suse.com>
|
||||
|
||||
- Update to 4.17.3:
|
||||
* chsh: do not warn about blank shell
|
||||
* lib/: Use strisdigit() instead of its pattern
|
||||
* lib/string/ctype/strisascii/: strisdigit(): Add function
|
||||
* lib/string/: Add comments expanding the letter-soup API names
|
||||
* lib/basename.c: Basename(): Use stprcspn() instead of its pattern
|
||||
* lib/string/strspn/, lib/, src/: stprspn(), strrspn_(): Split API into function and macro
|
||||
* lib/string/strspn/, lib/, src/: Move *spn() APIs to separate subdir
|
||||
* lib/string/strchr/: strrcspn(), stprcspn(): Add function and macro
|
||||
* src/useradd.c: Use !strcaseeq() instead of its pattern
|
||||
* lib/, src/: Use strcaseeq() instead of its pattern
|
||||
* lib/string/strcmp/: strcaseeq(): Add function
|
||||
* man/useradd.8.xml: Document new exit code 19 (E_BAD_NAME)
|
||||
* src/useradd.c: E_BAD_NAME: Use a different error code for bad login names
|
||||
* src/useradd.c: create_home(): Use !streq() instead of its pattern
|
||||
* lib/chkname.c: is_valid_name(): Use streq() instead of its pattern
|
||||
* configure.ac, lib/: Use __has_include(<gshadow.h>) instead of HAVE_GSHADOW_H
|
||||
* configure.ac: Remove unused AC_CHECK_HEADERS() checks
|
||||
* configure.ac, lib/: Use __has_include(<sys/capability.h>) instead of HAVE_SYS_CAPABILITY_H
|
||||
* lib/idmapping.c: Unconditionally include <sys/prctl.h>
|
||||
* lib/: Use __has_include(<security/openpam.h>) instead of HAVE_SECURITY_OPENPAM_H
|
||||
* lib/: Use __has_include(<security/pam_misc.h>) instead of HAVE_SECURITY_PAM_MISC_H
|
||||
* configure.ac, lib/: Use __has_include(<sys/random.h>) instead of HAVE_SYS_RANDOM_H
|
||||
* configure.ac, lib/: Use __has_include(<crypt.h>) instead of HAVE_CRYPT_H
|
||||
* lib/, src/: motd(): Report errors instead of exiting from library code
|
||||
* lib/motd.c: motd(): Invert logic to reduce indentation
|
||||
* lib/, src/, doc/: Remove pw_auth()'s $3 as dead code
|
||||
* lib/pwauth.*: PW_{ADD,CHANGE,DELETE,FTP,REXEC}: Remove dead code
|
||||
* lib/, src/, doc/: Remove dead code
|
||||
* src/vipw.c: Restore the original terminal pgrp after editing
|
||||
* lib/, src/: Use agetgroups() instead of its pattern
|
||||
* lib/shadow/grp/: agetgroups(): Add function
|
||||
* configure.ac, lib/, src/: Use gid_t instead of GETGROUPS_T
|
||||
* lib/adds.h: addslN(): Use QSORT() instead of its pattern
|
||||
* lib/search/sort/: QSORT(): Add macro
|
||||
* lib/addgrps.c: add_groups(): Remove arbitrary limit
|
||||
* lib/, src/: Rename variables
|
||||
* lib/addgrps.c: add_groups(): Reallocate at once
|
||||
* lib/string/strchr/: strchrscnt(): Add function
|
||||
* lib/addgrps.c: add_groups(): Split variable to avoid sign-mismatch diagnostics
|
||||
* lib/, src/: Use LSEARCH() instead of its pattern
|
||||
* lib/search/l/: LSEARCH(): Add macro
|
||||
* lib/, src/: Replace redundant checks by actual error handling
|
||||
* lib/, src/: Unconditionally call setgroups(2)
|
||||
* lib/addgrps.c: add_groups(): Simplify redundant code with a goto
|
||||
* lib/addgrps.c: add_groups(): Allocate earlier
|
||||
* lib/addgrps.c: add_groups(): Remove useless cast
|
||||
* lib/, src/: Use LFIND() instead of open-coded search loops
|
||||
* lib/search/l/: LFIND(): Add macro
|
||||
* lib/search/cmp/, lib/, tests/: CMP(), cmp_*(): Add macro and functions
|
||||
* lib/, src/: Simplify allocation of buffer
|
||||
* lib/, src/: Un-spageticize code
|
||||
* lib/, src/: Reduce scope of variables
|
||||
* lib/gshadow_.h: Fix compatibility with libc's struct sgrp
|
||||
* configure.ac, lib/gshadow.c: Presume working shadow group support in libc
|
||||
* lib/: Include <gshadow.h> if it's available
|
||||
* configure.ac, lib/: Assume initgroups(3) exists
|
||||
* configure.ac, lib/, src/: Assume setgroups(2) exists
|
||||
* lib/, src/: Turn error counters into flags
|
||||
* src/gpasswd: Use correct preprocessor definition
|
||||
* src/gpasswd: Clear password in more cases
|
||||
* lib/encrypt.c: Do not exit in error case
|
||||
* man/useradd.8.xml: wfix
|
||||
* src/login_nopam.c: list_match(): Use iteration instead of recursion
|
||||
* src/login_nopam.c: list_match(): Remove local variable
|
||||
* src/login_nopam.c: list_match(): Move code around
|
||||
* src/login_nopam.c: list_match(): '(match)' is always true here
|
||||
* src/login_nopam.c: list_match(): Add superfluous else
|
||||
* src/login_nopam.c: list_match(): Refactor conditional
|
||||
* man/passwd.1.xml: -P disables PAM support
|
||||
* chage: Drop PAM support
|
||||
* src/newusers.c: Turn nusers into size_t
|
||||
* src/: Make line number overflows less likely
|
||||
* man/: Install suauth.5 only if feature exists
|
||||
* add and use a login.defs.test with CREATE_HOME set
|
||||
* Revert "etc/login.defs: enable CREATE_HOME"
|
||||
* etc/login.defs: enable CREATE_HOME
|
||||
* Tests: implement system test framework
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Mon Jan 20 10:20:31 UTC 2025 - Michael Vetter <mvetter@suse.com>
|
||||
|
||||
|
||||
10
shadow.spec
10
shadow.spec
@@ -22,7 +22,7 @@
|
||||
%define no_config 1
|
||||
%endif
|
||||
Name: shadow
|
||||
Version: 4.18.0
|
||||
Version: 4.17.2
|
||||
Release: 0
|
||||
Summary: Utilities to Manage User and Group Accounts
|
||||
License: BSD-3-Clause AND GPL-2.0-or-later
|
||||
@@ -178,6 +178,8 @@ rm %{buildroot}%{_sysconfdir}/pam.d/login
|
||||
rm %{buildroot}/%{_bindir}/su
|
||||
rm %{buildroot}/%{_mandir}/man1/su.*
|
||||
rm %{buildroot}/%{_mandir}/*/man1/su.*
|
||||
rm %{buildroot}/%{_mandir}/man5/suauth.*
|
||||
rm %{buildroot}/%{_mandir}/*/man5/suauth.*
|
||||
rm %{buildroot}%{_sysconfdir}/pam.d/su
|
||||
|
||||
rm %{buildroot}/%{_bindir}/faillog
|
||||
@@ -222,7 +224,7 @@ mkdir -p %{buildroot}%{_sysconfdir}/login.defs.d
|
||||
|
||||
%pre
|
||||
%service_add_pre shadow.service shadow.timer
|
||||
for i in pam.d/chfn pam.d/chpasswd pam.d/chsh pam.d/groupadd pam.d/groupdel pam.d/groupmod pam.d/newusers pam.d/passwd pam.d/useradd pam.d/userdel pam.d/usermod; do
|
||||
for i in pam.d/chage pam.d/chfn pam.d/chpasswd pam.d/chsh pam.d/groupadd pam.d/groupdel pam.d/groupmod pam.d/newusers pam.d/passwd pam.d/useradd pam.d/userdel pam.d/usermod; do
|
||||
test -f %{_sysconfdir}/${i}.rpmsave && mv -v %{_sysconfdir}/${i}.rpmsave %{_sysconfdir}/${i}.rpmsave.old ||:
|
||||
done
|
||||
|
||||
@@ -262,7 +264,7 @@ test -f %{_sysconfdir}/login.defs.rpmsave && mv -v %{_sysconfdir}/login.defs.rpm
|
||||
%posttrans
|
||||
%if %{defined no_config}
|
||||
# Migration to /usr/etc
|
||||
for i in pam.d/chfn pam.d/chpasswd pam.d/chsh pam.d/groupadd pam.d/groupdel pam.d/groupmod pam.d/newusers pam.d/passwd pam.d/useradd pam.d/userdel pam.d/usermod; do
|
||||
for i in pam.d/chage pam.d/chfn pam.d/chpasswd pam.d/chsh pam.d/groupadd pam.d/groupdel pam.d/groupmod pam.d/newusers pam.d/passwd pam.d/useradd pam.d/userdel pam.d/usermod; do
|
||||
test -f %{_sysconfdir}/${i}.rpmsave && mv -v %{_sysconfdir}/${i}.rpmsave %{_sysconfdir}/${i} ||:
|
||||
done
|
||||
%endif
|
||||
@@ -282,6 +284,7 @@ test -f %{_sysconfdir}/login.defs.rpmsave && mv -v %{_sysconfdir}/login.defs.rpm
|
||||
%verify(not md5 size mtime) %config(noreplace) %{_sysconfdir}/subuid
|
||||
%verify(not md5 size mtime) %config(noreplace) %{_sysconfdir}/subgid
|
||||
%if %{defined no_config}
|
||||
%{_pam_vendordir}/chage
|
||||
%{_pam_vendordir}/chfn
|
||||
%{_pam_vendordir}/chsh
|
||||
%{_pam_vendordir}/passwd
|
||||
@@ -294,6 +297,7 @@ test -f %{_sysconfdir}/login.defs.rpmsave && mv -v %{_sysconfdir}/login.defs.rpm
|
||||
%{_pam_vendordir}/userdel
|
||||
%{_pam_vendordir}/usermod
|
||||
%else
|
||||
%config %{_sysconfdir}/pam.d/chage
|
||||
%config %{_sysconfdir}/pam.d/chfn
|
||||
%config %{_sysconfdir}/pam.d/chsh
|
||||
%config %{_sysconfdir}/pam.d/passwd
|
||||
|
||||
Reference in New Issue
Block a user