Commit message (Collapse) | Author | Age | |
---|---|---|---|
* | debian/patches-applied/no_PATH_MAX_on_hurd: define PATH_MAX for | Steve Langasek | 2019-01-08 |
| | | | | compatibility when it's not already set. Closes: #552043. | ||
* | one more patch tweak | Steve Langasek | 2019-01-08 |
| | |||
* | further patch fixup to match upstream | Steve Langasek | 2019-01-08 |
| | |||
* | fix a typo in the patch | Steve Langasek | 2019-01-08 |
| | |||
* | debian/patches/007_modules_pam_unix: drop compatibility handling of | Steve Langasek | 2019-01-08 |
| | | | | | 'max=' no-op; use of this option will now log an error, as warned three years ago. | ||
* | refresh other patches for new upstream version | Steve Langasek | 2019-01-08 |
| | |||
* | debian/patches/hurd_no_setfsuid: pam_env and pam_mail now also use | Steve Langasek | 2019-01-08 |
| | | | | setfsuid, so patch them to be likewise Hurd-safe. | ||
* | Drop patches conditional_module,_conditional_man and | Steve Langasek | 2019-01-08 |
| | | | | mkhomedir_linking.patch, which are included upstream. | ||
* | add a missing comma | Steve Langasek | 2019-01-08 |
| | |||
* | debian/patches-applied/007_modules_pam_unix: fix up patch for new | Steve Langasek | 2019-01-08 |
| | | | | upstream version which now implements minlen=, not min=. | ||
* | Don't pass --version-script options when linking executables, | Steve Langasek | 2019-01-08 |
| | | | | | only when linking libraries. Thanks to Julien Cristau <jcristau@debian.org> for the fix. Closes: #582362. | ||
* | patch committed upstream | Steve Langasek | 2019-01-08 |
| | |||
* | patch forwarded upstream | Steve Langasek | 2019-01-08 |
| | |||
* | debian/patches/conditional_module,_conditional_man: if we don't have the | Steve Langasek | 2019-01-08 |
| | | | | | libraries required for building pam_tty_audit, we shouldn't install the manpage either. LP: #588547. | ||
* | refresh other patches for new upstream version | Steve Langasek | 2019-01-08 |
| | |||
* | debian/patches/026_pam_unix_passwd_unknown_user: don't return | Steve Langasek | 2019-01-08 |
| | | | | | PAM_USER_UNKNOWN on password change of a user that has no shadow entry, upstream now implements auto-creating the shadow entry in this case. | ||
* | Drop patches pam.d-manpage-section, namespace_with_awk_not_gawk, and | Steve Langasek | 2019-01-08 |
| | | | | pam_securetty_tty_check_before_user_check, which are included upstream. | ||
* | debian/patches/007_modules_pam_unix: recognize that *all* of the password | Steve Langasek | 2019-01-08 |
| | | | | | hashes other than traditional crypt handle passwords >8 chars in length. LP: #356766. | ||
* | debian/patches/sys-types-include.patch: fix pam_modutil.h so that it can | Steve Langasek | 2019-01-08 |
| | | | | | be included directly, without having to include sys/types.h first. Closes: #556203. | ||
* | debian/patches/pam_securetty_tty_check_before_user_check: new patch, | Steve Langasek | 2019-01-08 |
| | | | | | | to make pam_securetty always return success on a secure tty regardless of what username was passed. Thanks to Nicolas François <nicolas.francois@centraliens.net> for the patch. Closes: #537848 | ||
* | debian/patches/autoconf.patch: pull ltmain.sh in, to fix some spurious | Steve Langasek | 2019-01-08 |
| | | | | library linkage in the modules. | ||
* | patch committed upstream | Steve Langasek | 2019-01-08 |
| | |||
* | debian/patches/namespace_with_awk_not_gawk: fix the sample | Steve Langasek | 2019-01-08 |
| | | | | | namespace.init script's dependency on non-POSIX features of gawk, since we don't use gawk by default. Closes; #518908. | ||
* | debian/patches/pam_unix_dont_trust_chkpwd_caller.patch: fix this patch | Steve Langasek | 2019-01-08 |
| | | | | | | | to call setregid() instead of always returning an error on username mismatch in unix_chkpwd, needed in the SELinux case and in some corner cases with the broken_shadow option. Thanks to Michael Spang for the analysis. Closes: #543589. | ||
* | final pass of manpage fixes | Steve Langasek | 2019-01-08 |
| | |||
* | another pass of manpage fixes | Steve Langasek | 2019-01-08 |
| | |||
* | oops, we don't want to remove the manpages entirely... | Steve Langasek | 2019-01-08 |
| | |||
* | another pass of manpage fixes | Steve Langasek | 2019-01-08 |
| | |||
* | debian/patches/fix-man-crud: new patch, fix "undefined macro" errors in | Steve Langasek | 2019-01-08 |
| | | | | | manpages caused by oddities of toolchain used when generating them upstream. | ||
* | add config.h.in changes to autoconf.patch, which will show up upon running a | Steve Langasek | 2019-01-08 |
| | | | | build in any case | ||
* | Include changes to pam_limits/README in the patch, since they end up in the | Steve Langasek | 2019-01-08 |
| | | | | | package anyway and this gives us a cleaner ./debian/rules clean | ||
* | pam_unix-chkpwd-wait also merged upstream | Steve Langasek | 2019-01-08 |
| | |||
* | debian/patches/007_modules_pam_unix: drop divergence from upstream | Steve Langasek | 2019-01-08 |
| | | | | | | | that treats "0" as a special value in various fields in /etc/shadow, and document this in debian/NEWS. Thanks to Nicolas François <nicolas.francois@centraliens.net> for the detailed analysis. Closes: #308229. | ||
* | Committed upstream | Steve Langasek | 2019-01-08 |
| | |||
* | refresh other patches for new upstream release | Steve Langasek | 2019-01-08 |
| | |||
* | Trim pam.d-manpage-section patch, which was mostly but not completely | Steve Langasek | 2019-01-08 |
| | | | | applied upstream. | ||
* | Drop patches pam_unix_thread-safe_save_old_password.patch, | Steve Langasek | 2019-01-08 |
| | | | | | | pam_env_ignore_garbage.patch, dont_freeze_password_chain, pam_1.0.4_mindays, pam_mail-fix-quiet, and cve-2009-0887-libpam-pam_misc.patch, which are included upstream. | ||
* | cve-2009-0887-libpam-pam_misc.patch: avoid integer signedness problem | Sam Hartman | 2019-01-08 |
| | | | | (CVE-2009-0887) (Closes: #520115) | ||
* | Merge debian sid branch | Sam Hartman | 2019-01-08 |
|\ | |||
| * | correct a typo in the update-motd patch, introduced by me :( | Steve Langasek | 2019-01-08 |
| | | |||
| * | pam_motd: run the update-motd scripts in pam_motd; render update-motd | Steve Langasek | 2019-01-08 |
| | | | | | | | | obsolete, LP: #399071 | ||
* | | pam_mail-fix-quiet: patch from Andreas Henriksson | Sam Hartman | 2019-01-08 |
|/ | | | | applied upstream to fix quiet option of pam_mail, Closes: #439268 | ||
* | refresh quilt patch offsets | Kees Cook | 2019-01-08 |
| | |||
* | Add debian/patches/pam_1.0.4_mindays: backport upstream 1.0.4 fixes | Kees Cook | 2019-01-08 |
| | | | | for MINDAYS-Field regression (closes: #514437). | ||
* | 027_pam_limits_better_init_allow_explicit_root: defaults need to be | Steve Langasek | 2019-01-08 |
| | | | | | declared as LIMITS_DEF_DEFAULT instead of LIMITS_DEF_ALL, otherwise global limits will fail to be applied. LP: #314222. | ||
* | 027_pam_limits_better_init_allow_explicit_root: set the RLIMIT_MEMLOCK | Steve Langasek | 2019-01-08 |
| | | | | limit correctly to match the kernel default, which is not RLIM_INFINITY. | ||
* | include documentation in the patch, giving examples of how to set | Steve Langasek | 2019-01-08 |
| | | | | limits for root. Thanks to Jonathan Marsden. | ||
* | revert the 'fix' for bug #515673, since this isn't really a bug at all. | Steve Langasek | 2019-01-08 |
| | |||
* | shadow the finite kernel defaults for RLIMIT_SIGPENDING and | Steve Langasek | 2019-01-08 |
| | | | | | RLIMIT_MSGQUEUE as well, so that the preceding changes don't suddenly expose systems to DoS or other issues. | ||
* | 027_pam_limits_better_init_allow_explicit_root: also fix the patch so | Steve Langasek | 2019-01-08 |
| | | | | | that our limit resets are actually *applied*, which has apparently been broken for who knows how long! |