openSUSE Build Service

Ana Guerrero (anag+factory) accepted request 1218188 from

Thorsten Kukuk (kukuk) 17 days ago (revision 142)

Update

Ana Guerrero (anag+factory) accepted request 1200265 from

Thorsten Kukuk (kukuk) about 2 months ago (revision 141)

- baselibs.conf: add pam-userdb

- pam_limits-systemd.patch: update to final PR

- Add systemd-logind support to pam_limits (pam_limits-systemd.patch)
- Remove /usr/etc/pam.d, everything should be migrated
- Remove pam_limits from default common-sessions* files. pam_limits
  is now part of pam-extra and not in our default generated config.
- pam_issue-systemd.patch: only count class user sessions

Dominique Leuenberger (dimstar_suse) accepted request 1192585 from

Valentin Lefebvre (vlefebvre) 3 months ago (revision 140)

Dominique Leuenberger (dimstar_suse) accepted request 1191852 from

Valentin Lefebvre (vlefebvre) 3 months ago (revision 139)

Ana Guerrero (anag+factory) accepted request 1166585 from

Thorsten Kukuk (kukuk) 7 months ago (revision 138)

- Update to version 1.6.1
  - pam_env: fixed --disable-econf --enable-vendordir support.
  - pam_unix: do not warn if password aging is disabled.
  - pam_unix: try to set uid to 0 before unix_chkpwd invocation.
  - pam_unix: allow empty passwords with non-empty hashes.
  - Multiple minor bug fixes, build fixes, portability fixes,
    documentation improvements, and translation updates.
- Remove backports:
  - pam_env-fix_vendordir.patch
  - pam_env-fix-enable-vendordir-fallback.patch
  - pam_env-remove-escaped-newlines.patch
  - pam_unix-fix-password-aging-disabled.patch

Ana Guerrero (anag+factory) accepted request 1149714 from

Valentin Lefebvre (vlefebvre) 9 months ago (revision 137)

Ana Guerrero (anag+factory) accepted request 1145173 from

Thorsten Kukuk (kukuk) 9 months ago (revision 136)

- pam.tmpfiles: Make sure the content of the /run directories get
  removed in case of a soft-reboot

Ana Guerrero (anag+factory) accepted request 1143388 from

Thorsten Kukuk (kukuk) 9 months ago (revision 135)

- Enable pam_canonicalize_user.so

Ana Guerrero (anag+factory) accepted request 1139944 from

Thorsten Kukuk (kukuk) 10 months ago (revision 134)

- Add post 1.6.0 release fixes for pam_env and pam_unix:
  - pam_env-fix-enable-vendordir-fallback.patch
  - pam_env-fix_vendordir.patch
  - pam_env-remove-escaped-newlines.patch
  - pam_unix-fix-password-aging-disabled.patch
- Update to version 1.6.0
  - Added support of configuration files with arbitrarily long lines.
  - build: fixed build outside of the source tree.
  - libpam: added use of getrandom(2) as a source of randomness if available.
  - libpam: fixed calculation of fail delay with very long delays.
  - libpam: fixed potential infinite recursion with includes.
  - libpam: implemented string to number conversions validation when parsing
    controls in configuration.
  - pam_access: added quiet_log option.
  - pam_access: fixed truncation of very long group names.
  - pam_canonicalize_user: new module to canonicalize user name.
  - pam_echo: fixed file handling to prevent overflows and short reads.
  - pam_env: added support of '\' character in environment variable values.
  - pam_exec: allowed expose_authtok for password PAM_TYPE.
  - pam_exec: fixed stack overflow with binary output of programs.
  - pam_faildelay: implemented parameter ranges validation.
  - pam_listfile: changed to treat \r and \n exactly the same in configuration.
  - pam_mkhomedir: hardened directory creation against timing attacks.
  - Please note that using *at functions leads to more open file handles
    during creation.
  - pam_namespace: fixed potential local DoS (CVE-2024-22365).
  - pam_nologin: fixed file handling to prevent short reads.
  - pam_pwhistory: helper binary is now built only if SELinux support is
    enabled.
  - pam_pwhistory: implemented reliable usernames handling when remembering

Ana Guerrero (anag+factory) accepted request 1108086 from

Factory Maintainer (factory-maintainer) about 1 year ago (revision 133)

Automatic submission by obs-autosubmit

Dominique Leuenberger (dimstar_suse) accepted request 1102711 from

Thorsten Kukuk (kukuk) over 1 year ago (revision 132)

Backport of upstream fixes for ALP

Dominique Leuenberger (dimstar_suse) accepted request 1085766 from

Valentin Lefebvre (vlefebvre) over 1 year ago (revision 131)

Dominique Leuenberger (dimstar_suse) accepted request 1080766 from

Thorsten Kukuk (kukuk) over 1 year ago (revision 130)

Dominique Leuenberger (dimstar_suse) accepted request 1073099 from

Thorsten Kukuk (kukuk) over 1 year ago (revision 129)

- Add common-session-nonlogin and postlogin-* pam.d config files
  for https://github.com/SUSE/pam-config/pull/16, pam_lastlog2
  and upcoming pam_wtmpdb.

Dominique Leuenberger (dimstar_suse) accepted request 1072045 from

Valentin Lefebvre (vlefebvre) over 1 year ago (revision 128)

Dominique Leuenberger (dimstar_suse) accepted request 1060842 from

Valentin Lefebvre (vlefebvre) almost 2 years ago (revision 127)

Dominique Leuenberger (dimstar_suse) accepted request 1045205 from

Dominique Leuenberger (dimstar_suse) almost 2 years ago (revision 126)

- Also obsolete pam_unix-32bit to have clean upgrade path.

- Merge pam_unix back into pam, seperate package not needed anymore

- Update pam-git.diff to current upstream
  - pam_env: Use vendor specific pam_env.conf and environment as fallback
  - pam_shells: Use the vendor directory
  obsoletes pam_env_econf.patch
- Refresh docbook5.patch

Dominique Leuenberger (dimstar_suse) accepted request 1041656 from

Thorsten Kukuk (kukuk) almost 2 years ago (revision 125)

Dominique Leuenberger (dimstar_suse) accepted request 1037575 from

Thorsten Kukuk (kukuk) almost 2 years ago (revision 124)

Dominique Leuenberger (dimstar_suse) accepted request 1010468 from

Thorsten Kukuk (kukuk) about 2 years ago (revision 123)

Places

Revisions of pam

Places