|
@@ -3,36 +3,71 @@
|
|
|
Summary: Utilities for managing accounts and shadow password files.
|
|
|
Summary(ja): シャドウパスワードファイルとアカウントを管理するユーティリティ
|
|
|
Name: shadow-utils
|
|
|
-Version: 4.1.5.1
|
|
|
-Release: 1%{?_dist_release}
|
|
|
Epoch: 2
|
|
|
-URL: http://pkg-shadow.alioth.debian.org/
|
|
|
-License: BSD
|
|
|
+Version: 4.8
|
|
|
+Release: 1%{?_dist_release}
|
|
|
Group: System Environment/Base
|
|
|
|
|
|
-Source0: http://pkg-shadow.alioth.debian.org/shadow-%{version}.tar.bz2
|
|
|
+Vendor: Project Vine
|
|
|
+Distribution: Vine Linux
|
|
|
+
|
|
|
+License: BSD and GPLv2+
|
|
|
+URL: http://pkg-shadow.alioth.debian.org/
|
|
|
+
|
|
|
+Source0: http://pkg-shadow.alioth.debian.org/shadow-%{version}.tar.xz
|
|
|
Source1: shadow-4.0.17-login.defs
|
|
|
Source2: shadow-utils.useradd
|
|
|
-Patch0: shadow-4.1.5-redhat.patch
|
|
|
-Patch1: shadow-4.1.5.1-goodname.patch
|
|
|
+
|
|
|
+# Misc small changes - most probably non-upstreamable
|
|
|
+Patch0: shadow-4.6-redhat.patch
|
|
|
+# Be more lenient with acceptable user/group names - non upstreamable
|
|
|
+Patch1: shadow-4.8-goodname.patch
|
|
|
+# Docfix for newusers - could be upstreamed
|
|
|
Patch2: shadow-4.1.5.1-info-parent-dir.patch
|
|
|
-Patch3: shadow-4.1.5-uflg.patch
|
|
|
-Patch6: shadow-4.1.5.1-selinux.patch
|
|
|
-Patch7: shadow-4.1.5-2ndskip.patch
|
|
|
-Patch8: shadow-4.1.5.1-backup-mode.patch
|
|
|
-Patch9: shadow-4.1.5.1-merge-group.patch
|
|
|
-Patch10: shadow-4.1.5.1-orig-context.patch
|
|
|
+# Misc SElinux related changes - upstreamability unknown
|
|
|
+Patch6: shadow-4.8-selinux.patch
|
|
|
+# Syslog message change - could be upstreamed
|
|
|
Patch11: shadow-4.1.5.1-logmsg.patch
|
|
|
-Patch12: shadow-4.1.5.1-errmsg.patch
|
|
|
-Patch13: shadow-4.1.5.1-audit-owner.patch
|
|
|
+# SElinux related - upstreamability unknown
|
|
|
Patch14: shadow-4.1.5.1-default-range.patch
|
|
|
-Patch15: shadow-4.1.5.1-manfix.patch
|
|
|
-Patch16: shadow-4.1.5.1-crypt-null.patch
|
|
|
+# Misc manual page changes - only some of them could be upstreamed
|
|
|
+Patch15: shadow-4.8-manfix.patch
|
|
|
+# Userdel usage message change - could be upstreamed
|
|
|
Patch17: shadow-4.1.5.1-userdel-helpfix.patch
|
|
|
-Patch18: shadow-4.1.5.1-group-alloc.patch
|
|
|
-
|
|
|
-Buildroot: %{_tmppath}/%{name}-%{version}-root
|
|
|
-#BuildRequires: autoconf, automake, libtool, gettext
|
|
|
+# Date parsing improvement - could be upstreamed
|
|
|
+Patch19: shadow-4.2.1-date-parsing.patch
|
|
|
+# Additional error message - could be upstreamed
|
|
|
+Patch21: shadow-4.6-move-home.patch
|
|
|
+# Audit message changes - upstreamability unknown
|
|
|
+Patch22: shadow-4.8-audit-update.patch
|
|
|
+# Changes related to password unlocking - could be upstreamed
|
|
|
+Patch23: shadow-4.5-usermod-unlock.patch
|
|
|
+# Additional SElinux related changes - upstreamability unknown
|
|
|
+Patch28: shadow-4.8-selinux-perms.patch
|
|
|
+# Handle NULL return from *time funcs - could be upstreamed
|
|
|
+Patch29: shadow-4.2.1-null-tm.patch
|
|
|
+# SElinux related - upstreamability unknown
|
|
|
+Patch31: shadow-4.6-getenforce.patch
|
|
|
+# Handle include of crypt.h - could be upstreamed
|
|
|
+Patch32: shadow-4.8-crypt_h.patch
|
|
|
+# Handle /etc/passwd corruption - could be upstreamed
|
|
|
+Patch33: shadow-4.8-long-entry.patch
|
|
|
+# Limit uid/gid allocation to non-zero - could be upstreamed
|
|
|
+Patch38: shadow-4.6-sysugid-min-limit.patch
|
|
|
+# Ignore LOGIN_PLAIN_PROMPT in login.defs - upstreamability unknown
|
|
|
+Patch40: shadow-4.8-ignore-login-prompt.patch
|
|
|
+# Make the missing shell check into warning - could be upstreamed
|
|
|
+Patch41: shadow-4.8-invalid-shell-check.patch
|
|
|
+# Generate /var/spool/mail/$USER with the proper SELinux user identity - already upstreamed
|
|
|
+Patch42: shadow-4.8-useradd-selinux-mail.patch
|
|
|
+
|
|
|
+BuildRoot: %{_tmppath}/%{name}-%{version}-root
|
|
|
+BuildRequires: gcc
|
|
|
+BuildRequires: audit-libs-devel >= 1.6.5
|
|
|
+BuildRequires: libacl-devel, libattr-devel
|
|
|
+BuildRequires: bison, flex, docbook-style-xsl, docbook-dtds
|
|
|
+BuildRequires: autoconf, automake, libtool, gettext-devel
|
|
|
+BuildRequires: /usr/bin/xsltproc, /usr/bin/itstool
|
|
|
Obsoletes: adduser
|
|
|
|
|
|
%description
|
|
@@ -66,27 +101,39 @@ pwconvコマンドはパスワードをシャドウパスワードフォーマ
|
|
|
%patch0 -p1 -b .redhat
|
|
|
%patch1 -p1 -b .goodname
|
|
|
%patch2 -p1 -b .info-parent-dir
|
|
|
-%patch3 -p1 -b .uflg
|
|
|
%if %{WITH_SELINUX}
|
|
|
%patch6 -p1 -b .selinux
|
|
|
%endif
|
|
|
-%patch7 -p1 -b .2ndskip
|
|
|
-%patch8 -p1 -b .backup-mode
|
|
|
-%patch9 -p1 -b .merge-group
|
|
|
-%patch10 -p1 -b .orig-context
|
|
|
%patch11 -p1 -b .logmsg
|
|
|
-%patch12 -p1 -b .errmsg
|
|
|
-%patch13 -p1 -b .audit-owner
|
|
|
%patch14 -p1 -b .default-range
|
|
|
%patch15 -p1 -b .manfix
|
|
|
-%patch16 -p1 -b .crypt-null
|
|
|
%patch17 -p1 -b .userdel
|
|
|
-%patch18 -p1 -b .group-alloc
|
|
|
+%patch19 -p1 -b .date-parsing
|
|
|
+%patch21 -p1 -b .move-home
|
|
|
+%patch22 -p1 -b .audit-update
|
|
|
+%patch23 -p1 -b .unlock
|
|
|
+%patch28 -p1 -b .selinux-perms
|
|
|
+%patch29 -p1 -b .null-tm
|
|
|
+%if %{WITH_SELINUX}
|
|
|
+%patch31 -p1 -b .getenforce
|
|
|
+%endif
|
|
|
+%patch32 -p1 -b .crypt_h
|
|
|
+%patch33 -p1 -b .long-entry
|
|
|
+%patch38 -p1 -b .sysugid-min-limit
|
|
|
+%patch40 -p1 -b .login-prompt
|
|
|
+%patch41 -p1 -b .invalid-shell
|
|
|
+%if %{WITH_SELINUX}
|
|
|
+%patch42 -p1 -b .useradd-selinux-mail
|
|
|
+%endif
|
|
|
|
|
|
-#autoreconf -f -i
|
|
|
+iconv -f ISO88591 -t utf-8 doc/HOWTO > doc/HOWTO.utf8
|
|
|
+cp -f doc/HOWTO.utf8 doc/HOWTO
|
|
|
+
|
|
|
+# Force regeneration of getdate.c
|
|
|
+rm libmisc/getdate.c
|
|
|
|
|
|
-%build
|
|
|
|
|
|
+%build
|
|
|
export CFLAGS="$RPM_OPT_FLAGS -fpie"
|
|
|
export LDFLAGS="-pie -Wl,-z,relro -Wl,-z,now"
|
|
|
|
|
@@ -102,70 +149,70 @@ export LDFLAGS="-pie -Wl,-z,relro -Wl,-z,now"
|
|
|
--without-libpam \
|
|
|
--disable-shared \
|
|
|
--with-group-name-max-length=32
|
|
|
-make
|
|
|
+make %{_smp_mflags}
|
|
|
|
|
|
%install
|
|
|
-rm -rf $RPM_BUILD_ROOT
|
|
|
-make install DESTDIR=$RPM_BUILD_ROOT gnulocaledir=$RPM_BUILD_ROOT/%{_datadir}/locale MKINSTALLDIRS=`pwd`/mkinstalldirs
|
|
|
-install -d -m 755 $RPM_BUILD_ROOT/etc/default
|
|
|
-install -c -m 0644 %{SOURCE1} $RPM_BUILD_ROOT/etc/login.defs
|
|
|
-install -c -m 0600 %{SOURCE2} $RPM_BUILD_ROOT/etc/default/useradd
|
|
|
+rm -rf %{buildroot}
|
|
|
+make install DESTDIR=%{buildroot} gnulocaledir=%{buildroot}/%{_datadir}/locale MKINSTALLDIRS=`pwd`/mkinstalldirs
|
|
|
+install -d -m 755 %{buildroot}/etc/default
|
|
|
+install -c -m 0644 %{SOURCE1} %{buildroot}/etc/login.defs
|
|
|
+install -c -m 0600 %{SOURCE2} %{buildroot}/etc/default/useradd
|
|
|
|
|
|
|
|
|
-ln -s useradd $RPM_BUILD_ROOT%{_sbindir}/adduser
|
|
|
-ln -s useradd.8 $RPM_BUILD_ROOT/%{_mandir}/man8/adduser.8
|
|
|
-for subdir in $RPM_BUILD_ROOT/%{_mandir}/{??,??_??,??_??.*}/man* ; do
|
|
|
+ln -s useradd %{buildroot}%{_sbindir}/adduser
|
|
|
+ln -s useradd.8 %{buildroot}/%{_mandir}/man8/adduser.8
|
|
|
+for subdir in %{buildroot}/%{_mandir}/{??,??_??,??_??.*}/man* ; do
|
|
|
test -d $subdir && test -e $subdir/useradd.8 && echo ".so man8/useradd.8" > $subdir/adduser.8
|
|
|
done
|
|
|
|
|
|
# Remove binaries we don't use.
|
|
|
-rm $RPM_BUILD_ROOT/%{_bindir}/chfn
|
|
|
-rm $RPM_BUILD_ROOT/%{_bindir}/chsh
|
|
|
-rm $RPM_BUILD_ROOT/%{_bindir}/expiry
|
|
|
-rm $RPM_BUILD_ROOT/%{_bindir}/groups
|
|
|
-rm $RPM_BUILD_ROOT/%{_bindir}/login
|
|
|
-rm $RPM_BUILD_ROOT/%{_bindir}/passwd
|
|
|
-rm $RPM_BUILD_ROOT/%{_bindir}/su
|
|
|
-rm $RPM_BUILD_ROOT/%{_sysconfdir}/login.access
|
|
|
-rm $RPM_BUILD_ROOT/%{_sysconfdir}/limits
|
|
|
-rm $RPM_BUILD_ROOT/%{_sbindir}/logoutd
|
|
|
-rm $RPM_BUILD_ROOT/%{_sbindir}/nologin
|
|
|
-rm $RPM_BUILD_ROOT/%{_sbindir}/chgpasswd
|
|
|
-rm $RPM_BUILD_ROOT/%{_mandir}/man1/chfn.*
|
|
|
-rm $RPM_BUILD_ROOT/%{_mandir}/*/man1/chfn.*
|
|
|
-rm $RPM_BUILD_ROOT/%{_mandir}/man1/chsh.*
|
|
|
-rm $RPM_BUILD_ROOT/%{_mandir}/*/man1/chsh.*
|
|
|
-rm $RPM_BUILD_ROOT/%{_mandir}/man1/expiry.*
|
|
|
-rm $RPM_BUILD_ROOT/%{_mandir}/*/man1/expiry.*
|
|
|
-rm $RPM_BUILD_ROOT/%{_mandir}/man1/groups.*
|
|
|
-rm $RPM_BUILD_ROOT/%{_mandir}/*/man1/groups.*
|
|
|
-rm $RPM_BUILD_ROOT/%{_mandir}/man1/login.*
|
|
|
-rm $RPM_BUILD_ROOT/%{_mandir}/*/man1/login.*
|
|
|
-rm $RPM_BUILD_ROOT/%{_mandir}/man1/passwd.*
|
|
|
-rm $RPM_BUILD_ROOT/%{_mandir}/*/man1/passwd.*
|
|
|
-rm $RPM_BUILD_ROOT/%{_mandir}/man1/su.*
|
|
|
-rm $RPM_BUILD_ROOT/%{_mandir}/*/man1/su.*
|
|
|
-rm $RPM_BUILD_ROOT/%{_mandir}/man5/limits.*
|
|
|
-rm $RPM_BUILD_ROOT/%{_mandir}/*/man5/limits.*
|
|
|
-rm $RPM_BUILD_ROOT/%{_mandir}/man5/login.access.*
|
|
|
-rm $RPM_BUILD_ROOT/%{_mandir}/*/man5/login.access.*
|
|
|
-rm $RPM_BUILD_ROOT/%{_mandir}/man5/passwd.*
|
|
|
-rm $RPM_BUILD_ROOT/%{_mandir}/*/man5/passwd.*
|
|
|
-rm $RPM_BUILD_ROOT/%{_mandir}/man5/porttime.*
|
|
|
-rm $RPM_BUILD_ROOT/%{_mandir}/*/man5/porttime.*
|
|
|
-rm $RPM_BUILD_ROOT/%{_mandir}/man5/suauth.*
|
|
|
-rm $RPM_BUILD_ROOT/%{_mandir}/*/man5/suauth.*
|
|
|
-rm $RPM_BUILD_ROOT/%{_mandir}/man8/logoutd.*
|
|
|
-rm $RPM_BUILD_ROOT/%{_mandir}/*/man8/logoutd.*
|
|
|
-rm $RPM_BUILD_ROOT/%{_mandir}/man8/nologin.*
|
|
|
-rm $RPM_BUILD_ROOT/%{_mandir}/*/man8/nologin.*
|
|
|
-rm $RPM_BUILD_ROOT/%{_mandir}/man8/chgpasswd.*
|
|
|
-rm $RPM_BUILD_ROOT/%{_mandir}/*/man8/chgpasswd.*
|
|
|
+rm %{buildroot}/%{_bindir}/chfn
|
|
|
+rm %{buildroot}/%{_bindir}/chsh
|
|
|
+rm %{buildroot}/%{_bindir}/expiry
|
|
|
+rm %{buildroot}/%{_bindir}/groups
|
|
|
+rm %{buildroot}/%{_bindir}/login
|
|
|
+rm %{buildroot}/%{_bindir}/passwd
|
|
|
+rm %{buildroot}/%{_bindir}/su
|
|
|
+rm %{buildroot}/%{_sysconfdir}/login.access
|
|
|
+rm %{buildroot}/%{_sysconfdir}/limits
|
|
|
+rm %{buildroot}/%{_sbindir}/logoutd
|
|
|
+rm %{buildroot}/%{_sbindir}/nologin
|
|
|
+rm %{buildroot}/%{_sbindir}/chgpasswd
|
|
|
+rm %{buildroot}/%{_mandir}/man1/chfn.*
|
|
|
+rm %{buildroot}/%{_mandir}/*/man1/chfn.*
|
|
|
+rm %{buildroot}/%{_mandir}/man1/chsh.*
|
|
|
+rm %{buildroot}/%{_mandir}/*/man1/chsh.*
|
|
|
+rm %{buildroot}/%{_mandir}/man1/expiry.*
|
|
|
+rm %{buildroot}/%{_mandir}/*/man1/expiry.*
|
|
|
+rm %{buildroot}/%{_mandir}/man1/groups.*
|
|
|
+rm %{buildroot}/%{_mandir}/*/man1/groups.*
|
|
|
+rm %{buildroot}/%{_mandir}/man1/login.*
|
|
|
+rm %{buildroot}/%{_mandir}/*/man1/login.*
|
|
|
+rm %{buildroot}/%{_mandir}/man1/passwd.*
|
|
|
+rm %{buildroot}/%{_mandir}/*/man1/passwd.*
|
|
|
+rm %{buildroot}/%{_mandir}/man1/su.*
|
|
|
+rm %{buildroot}/%{_mandir}/*/man1/su.*
|
|
|
+rm %{buildroot}/%{_mandir}/man5/limits.*
|
|
|
+rm %{buildroot}/%{_mandir}/*/man5/limits.*
|
|
|
+rm %{buildroot}/%{_mandir}/man5/login.access.*
|
|
|
+rm %{buildroot}/%{_mandir}/*/man5/login.access.*
|
|
|
+rm %{buildroot}/%{_mandir}/man5/passwd.*
|
|
|
+rm %{buildroot}/%{_mandir}/*/man5/passwd.*
|
|
|
+rm %{buildroot}/%{_mandir}/man5/porttime.*
|
|
|
+rm %{buildroot}/%{_mandir}/*/man5/porttime.*
|
|
|
+rm %{buildroot}/%{_mandir}/man5/suauth.*
|
|
|
+rm %{buildroot}/%{_mandir}/*/man5/suauth.*
|
|
|
+rm %{buildroot}/%{_mandir}/man8/logoutd.*
|
|
|
+rm %{buildroot}/%{_mandir}/*/man8/logoutd.*
|
|
|
+rm %{buildroot}/%{_mandir}/man8/nologin.*
|
|
|
+rm %{buildroot}/%{_mandir}/*/man8/nologin.*
|
|
|
+rm %{buildroot}/%{_mandir}/man8/chgpasswd.*
|
|
|
+rm %{buildroot}/%{_mandir}/*/man8/chgpasswd.*
|
|
|
|
|
|
%find_lang shadow
|
|
|
|
|
|
%clean
|
|
|
-rm -rf $RPM_BUILD_ROOT
|
|
|
+rm -rf %{buildroot}
|
|
|
|
|
|
%files -f shadow.lang
|
|
|
%defattr(-,root,root)
|
|
@@ -179,6 +226,8 @@ rm -rf $RPM_BUILD_ROOT
|
|
|
%{_bindir}/gpasswd
|
|
|
%{_bindir}/lastlog
|
|
|
%{_bindir}/newgrp
|
|
|
+%attr(0755,root,root) %caps(cap_setgid=ep) %{_bindir}/newgidmap
|
|
|
+%attr(0755,root,root) %caps(cap_setuid=ep) %{_bindir}/newuidmap
|
|
|
%{_sbindir}/adduser
|
|
|
%{_sbindir}/user*
|
|
|
%{_sbindir}/group*
|
|
@@ -197,6 +246,10 @@ rm -rf $RPM_BUILD_ROOT
|
|
|
%{_mandir}/*/man1/sg.1*
|
|
|
%{_mandir}/man1/newgrp.1*
|
|
|
%{_mandir}/*/man1/newgrp.1*
|
|
|
+%{_mandir}/man1/newgidmap.1*
|
|
|
+%{_mandir}/*/man1/newgidmap.1*
|
|
|
+%{_mandir}/man1/newuidmap.1*
|
|
|
+%{_mandir}/*/man1/newuidmap.1*
|
|
|
%{_mandir}/man3/shadow.3*
|
|
|
%{_mandir}/*/man3/shadow.3*
|
|
|
%{_mandir}/man3/getspnam.3*
|
|
@@ -209,6 +262,10 @@ rm -rf $RPM_BUILD_ROOT
|
|
|
%{_mandir}/*/man5/gshadow.5*
|
|
|
%{_mandir}/man5/faillog.5*
|
|
|
%{_mandir}/*/man5/faillog.5*
|
|
|
+%{_mandir}/man5/subgid.5*
|
|
|
+%{_mandir}/*/man5/subgid.5*
|
|
|
+%{_mandir}/man5/subuid.5*
|
|
|
+%{_mandir}/*/man5/subuid.5*
|
|
|
%{_mandir}/man8/adduser.8*
|
|
|
%{_mandir}/*/man8/adduser.8*
|
|
|
%{_mandir}/man8/group*.8*
|
|
@@ -235,6 +292,10 @@ rm -rf $RPM_BUILD_ROOT
|
|
|
%{_mandir}/*/man8/vigr.8*
|
|
|
|
|
|
%changelog
|
|
|
+* Wed Mar 18 2020 Tomohiro "Tomo-p" KATO <tomop@teamgedoh.net> 2:4.8-1
|
|
|
+- updated to 4.8.
|
|
|
+- updated patches.
|
|
|
+
|
|
|
* Wed Jul 09 2014 Daisuke SUZUKI <daisuke@vinelinux.org> 2:4.1.5.1-1
|
|
|
- update to 4.1.5.1
|
|
|
|
|
@@ -258,7 +319,7 @@ rm -rf $RPM_BUILD_ROOT
|
|
|
* Fri Aug 15 2008 Shu KONNO <owa@bg.wakwak.com> 2:4.0.16-1vl5
|
|
|
- applied new versioning policy, spec in utf-8
|
|
|
|
|
|
-* Tue Aug 14 2006 Daisuke SUZUKI <daisuke@linux.or.jp> 2:4.0.16-0vl3
|
|
|
+* Mon Aug 14 2006 Daisuke SUZUKI <daisuke@linux.or.jp> 2:4.0.16-0vl3
|
|
|
- update Patch0 to fix <BTS:0499>
|
|
|
- select smaller gid value for system account
|
|
|
|
|
@@ -431,7 +492,7 @@ rm -rf $RPM_BUILD_ROOT
|
|
|
* Thu Nov 06 1997 Cristian Gafton <gafton@redhat.com>
|
|
|
- added forgot lastlog command to the spec file
|
|
|
|
|
|
-* Mon Oct 26 1997 Cristian Gafton <gafton@redhat.com>
|
|
|
+* Sun Oct 26 1997 Cristian Gafton <gafton@redhat.com>
|
|
|
- obsoletes adduser
|
|
|
|
|
|
* Thu Oct 23 1997 Cristian Gafton <gafton@redhat.com>
|