pam (1.5.2-9.1) unstable; urgency=medium

  * Non-maintainer upload acked by Sam Hartman.
  * Really fix quilt-related FTBFS: (Closes: #1054505)
    pam is a 3.0 (quilt) source package and has a .pc directory after unpack
    despite having no debian/patches. Even when setting QUILT_PATCH_DIR or
    QUILT_PATCHES, quilt is now mislead to using the non-existent
    debian/patches and this makes dh_quilt_unpatch fail, so we delete that
    directory unless it corresponds to the real debian/patches-applied that we
    want to be used.

[dgit import unpatched pam 1.5.2-9.1]

1 files changed, 33 insertions, 0 deletions

diff --git a/debian/patches-applied/026_pam_unix_passwd_unknown_user b/debian/patches-applied/026_pam_unix_passwd_unknown_user
new file mode 100644
index 00000000..d277fee9
--- /dev/null
+++ b/debian/patches-applied/026_pam_unix_passwd_unknown_user
@@ -0,0 +1,33 @@
+Description: distinguish between password manipulation failure and missing user.
+Author: Martin Schwenke <martin@meltin.net>
+
+Index: pam/modules/pam_unix/passverify.c
+===================================================================
+--- pam.orig/modules/pam_unix/passverify.c
++++ pam/modules/pam_unix/passverify.c
+@@ -801,7 +801,7 @@
+     struct passwd *tmpent = NULL;
+     struct stat st;
+     FILE *pwfile, *opwfile;
+-    int err = 1;
++    int err = 1, found = 0;
+     int oldmask;
+ #ifdef WITH_SELINUX
+     char *prev_context_raw = NULL;
+@@ -872,6 +872,7 @@
+ 
+ 	    tmpent->pw_passwd = assigned_passwd.charp;
+ 	    err = 0;
++	    found = 1;
+ 	}
+ 	if (putpwent(tmpent, pwfile)) {
+ 	    D(("error writing entry to password file: %m"));
+@@ -914,7 +915,7 @@
+ 	return PAM_SUCCESS;
+     } else {
+ 	unlink(PW_TMPFILE);
+-	return PAM_AUTHTOK_ERR;
++	return found ? PAM_AUTHTOK_ERR : PAM_USER_UNKNOWN;
+     }
+ }
+