Accepting request 1085746 from home:kukuk:cleanup

- Update to final 1.5.3 release:
  - configure: added --enable-logind option to use logind instead of utmp
    in pam_issue and pam_timestamp.
  - pam_modutil_getlogin: changed to use getlogin() from libc instead of
    parsing utmp.
  - Added libeconf support to pam_env and pam_shells.
  - Added vendor directory support to pam_access, pam_env, pam_group,
    pam_faillock, pam_limits, pam_namespace, pam_pwhistory, pam_sepermit,
    pam_shells, and pam_time.
  - pam_limits: changed to not fail on missing config files.
  - pam_pwhistory: added conf= option to specify config file location.
  - pam_pwhistory: added file= option to specify password history file
    location.
  - pam_shells: added shells.d support when libeconf and vendordir are enabled.
  - Deprecated pam_lastlog: this module is no longer built by default because
    it uses utmp, wtmp, btmp and lastlog, but none of them are Y2038 safe,
    even on 64bit architectures.
    pam_lastlog will be removed in one of the next releases, consider using
    pam_lastlog2 (from https://github.com/thkukuk/lastlog2) and/or
    pam_wtmpdb (from https://github.com/thkukuk/wtmpdb) instead.
  - Deprecated _pam_overwrite(), _pam_overwrite_n(), and _pam_drop_reply()
    macros provided by _pam_macros.h; the memory override performed by these
    macros can be optimized out by the compiler and therefore can no longer
    be relied upon.

OBS-URL: https://build.opensuse.org/request/show/1085746
OBS-URL: https://build.opensuse.org/package/show/Linux-PAM/pam?expand=0&rev=277

Linux-PAM-1.5.2.90.tar.xz

@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:5a819c1b629b8101543e6c964a4e22d23b29f3456d28b4ba403dd280e46a6315
-size 1009900

Linux-PAM-1.5.3.tar.xz.asc

@@ -0,0 +1,16 @@
+-----BEGIN PGP SIGNATURE-----
+
+iQIcBAABCgAGBQJkWBFQAAoJEKgEH6g54W42OoMP/R1O9dvpncrR4DfD3yJViTPw
+To3isPszsdHhw/uZUzCBEUMxhJgUgefzHGAng1EbTyX2eTLk/cnLY8pZLXr3pzC0
+5CfacxAqgjK8B/7CbchsZQCDal84E5jR8qyzVCM3IPxZQfpiR3HJzXVjhg/gnBcY
+L6v7FbLpcdM2keHHT1C/hyQfTnzyIdmwyzRdE1DF3ERbe3/1VlNmANNOacZ1H2T9
+Hs5dVIFiXwOO11Xku42oOo99LCqXyIsRnEogBFCORHNjD7B88lCdJAHssBdvWq5t
+/CJnoGtJrVCXs11JVPSNyW0rm24rZH9YCC6yVRIuMq6jjMBawFUlMAqamLoSA3hK
+4BPuPqQjHYk/D5H+m0HF2qRDpz76Bj1zdmYofqspeJf4QJOyOpMSXFY3pgsohuKW
+P8YQ44cAkmMswFqMSKGi9EVnf6SVXWQFoHJhtlbUgi7ef/4IICrbtgSSE96OGdlg
+Sdoplu3n+1HClaYqlHbjkd/m0Hc8QvOjovctb0Zoclnlup+u2JH4rDNqjxFUvkWB
+8CeILjebgBrNRqAFDx7fKBEQyHs5FLOtUU1SwBLXXSyMCHuMhr/tKBHcbDgMhpVP
+IiIyYGyEGUoIR/er5AgIX9e6/zcQbc8OvY+gTu9t+tw+HIt8hGvUUkuYX8LB1k6r
+zf06e/iTT4GL6AhJtbh3
+=2hyW
+-----END PGP SIGNATURE-----

pam.changes

@@ -1,3 +1,31 @@
+-------------------------------------------------------------------
+Tue May  9 12:14:48 UTC 2023 - Thorsten Kukuk <kukuk@suse.com>
+
+- Update to final 1.5.3 release:
+  - configure: added --enable-logind option to use logind instead of utmp
+    in pam_issue and pam_timestamp.
+  - pam_modutil_getlogin: changed to use getlogin() from libc instead of
+    parsing utmp.
+  - Added libeconf support to pam_env and pam_shells.
+  - Added vendor directory support to pam_access, pam_env, pam_group,
+    pam_faillock, pam_limits, pam_namespace, pam_pwhistory, pam_sepermit,
+    pam_shells, and pam_time.
+  - pam_limits: changed to not fail on missing config files.
+  - pam_pwhistory: added conf= option to specify config file location.
+  - pam_pwhistory: added file= option to specify password history file
+    location.
+  - pam_shells: added shells.d support when libeconf and vendordir are enabled.
+  - Deprecated pam_lastlog: this module is no longer built by default because
+    it uses utmp, wtmp, btmp and lastlog, but none of them are Y2038 safe,
+    even on 64bit architectures.
+    pam_lastlog will be removed in one of the next releases, consider using
+    pam_lastlog2 (from https://github.com/thkukuk/lastlog2) and/or
+    pam_wtmpdb (from https://github.com/thkukuk/wtmpdb) instead.
+  - Deprecated _pam_overwrite(), _pam_overwrite_n(), and _pam_drop_reply()
+    macros provided by _pam_macros.h; the memory override performed by these
+    macros can be optimized out by the compiler and therefore can no longer
+    be relied upon. 
+
 -------------------------------------------------------------------
 Thu Apr 20 09:40:50 UTC 2023 - Thorsten Kukuk <kukuk@suse.com>
 

pam.spec

@@ -71,14 +71,14 @@
 #
 Name:           pam%{name_suffix}
 #
-Version:        1.5.2.90
+Version:        1.5.3
 Release:        0
 Summary:        A Security Tool that Provides Authentication for Applications
 License:        GPL-2.0-or-later OR BSD-3-Clause
 Group:          System/Libraries
 URL:            https://github.com/linux-pam/linux-pam
 Source:         Linux-PAM-%{version}.tar.xz
-# XXX Source1:        Linux-PAM-%{version}.tar.xz.asc
+Source1:        Linux-PAM-%{version}.tar.xz.asc
 Source2:        macros.pam
 Source3:        other.pamd
 Source4:        common-auth.pamd
@@ -224,6 +224,7 @@ CFLAGS="$CFLAGS -fpatchable-function-entry=16,14 -fdump-ipa-clones"
 	--enable-isadir=../..%{_pam_moduledir} \
 	--enable-securedir=%{_pam_moduledir} \
 	--enable-vendordir=%{_prefix}/etc \
+	--enable-logind \
 	--disable-nis \
 %if %{with debug}
 	--enable-debug