|
@@ -1,5 +1,5 @@
|
|
|
%bcond_with systemd
|
|
|
-%define pam_redhat_version 1.1.4
|
|
|
+%define pam_redhat_version 1.2.0
|
|
|
|
|
|
%define build_compat32 %{?_with_compat32:1}%{!?_with_compat32:0}
|
|
|
|
|
@@ -7,8 +7,8 @@
|
|
|
Summary: A security tool which provides authentication for applications
|
|
|
Summary(ja): アプリケーションに認証の仕組みを提供するセキュリティツール
|
|
|
Name: pam
|
|
|
-Version: 1.5.2
|
|
|
-Release: 2%{?_dist_release}%{?with_systemd:.systemd}
|
|
|
+Version: 1.5.3
|
|
|
+Release: 1%{?_dist_release}%{?with_systemd:.systemd}
|
|
|
Group: system
|
|
|
Vendor: Project Vine
|
|
|
Distribution: Vine Linux
|
|
@@ -16,11 +16,12 @@ Packager: daisuke
|
|
|
|
|
|
# The library is BSD licensed with option to relicense as GPLv2+
|
|
|
# - this option is redundant as the BSD license allows that anyway.
|
|
|
-# pam_timestamp, pam_loginuid, and pam_console modules are GPLv2+.
|
|
|
+# pam_timestamp and pam_loginuid modules are GPLv2+.
|
|
|
License: BSD and GPLv2+
|
|
|
URL: http://www.us.kernel.org/pub/linux/libs/pam/index.html
|
|
|
Source0: https://github.com/linux-pam/linux-pam/releases/download/v%{version}/Linux-PAM-%{version}.tar.xz
|
|
|
-Source2: https://releases.pagure.org/pam-redhat/pam-redhat-%{pam_redhat_version}.tar.bz2
|
|
|
+Source2: https://releases.pagure.org/pam-redhat/pam-redhat-%{pam_redhat_version}.tar.xz
|
|
|
+Source3: macros.pam
|
|
|
Source5: other.pamd
|
|
|
Source6: system-auth.pamd
|
|
|
Source7: password-auth.pamd
|
|
@@ -35,10 +36,9 @@ Source15: pamtmp.conf
|
|
|
Source16: postlogin.pamd
|
|
|
Source17: postlogin.5
|
|
|
Source18: https://www.gnu.org/licenses/old-licenses/gpl-2.0.txt
|
|
|
-Source1000: linux-pam-ja.po
|
|
|
-Patch1: pam-1.5.0-redhat-modules.patch
|
|
|
-Patch2: pam-1.5.0-noflex.patch
|
|
|
-Patch3: pam-1.3.0-unix-nomsg.patch
|
|
|
+Patch1: pam-1.5.3-redhat-modules.patch
|
|
|
+Patch2: pam-1.5.3-noflex.patch
|
|
|
+Patch3: pam-1.5.3-unix-nomsg.patch
|
|
|
|
|
|
#Patch1000: pam-1.5.1-ja.po.patch
|
|
|
|
|
@@ -57,13 +57,12 @@ Patch3: pam-1.3.0-unix-nomsg.patch
|
|
|
BuildRoot: %{_tmppath}/%{name}-%{version}-%{release}-root-%(%{__id_u} -n)
|
|
|
Requires: cracklib, cracklib-dicts >= 2.8
|
|
|
Requires: libpwquality
|
|
|
-Requires(post): /sbin/ldconfig
|
|
|
-Requires(postun): /sbin/ldconfig
|
|
|
BuildRequires: autoconf >= 2.60
|
|
|
BuildRequires: automake, libtool
|
|
|
BuildRequires: bison, flex, sed
|
|
|
BuildRequires: cracklib, cracklib-dicts >= 2.8
|
|
|
BuildRequires: perl, pkgconfig, gettext
|
|
|
+BuildRequires: openssl-devel
|
|
|
%if %{WITH_AUDIT}
|
|
|
BuildRequires: audit-libs-devel >= 1.0.8
|
|
|
%endif
|
|
@@ -168,9 +167,6 @@ cp %{SOURCE18} .
|
|
|
%patch2 -p1 -b .noflex
|
|
|
%patch3 -p1 -b .nomsg
|
|
|
|
|
|
-#patch1000 -p1 -b .ja
|
|
|
-cp %{SOURCE1000} po/ja.po
|
|
|
-
|
|
|
## security patch(es)
|
|
|
|
|
|
autoreconf -i
|
|
@@ -181,7 +177,6 @@ autoreconf -i
|
|
|
--disable-rpath \
|
|
|
--libdir=/%{_lib} \
|
|
|
--includedir=%{_includedir}/security \
|
|
|
- --enable-vendordir=%{_datadir} \
|
|
|
--enable-isadir=../..%{_moduledir} \
|
|
|
%if %{with systemd}
|
|
|
--with-systemdunitdir=%{_unitdir} \
|
|
@@ -193,7 +188,9 @@ autoreconf -i
|
|
|
--disable-audit \
|
|
|
%endif
|
|
|
--disable-static \
|
|
|
- --disable-prelude
|
|
|
+ --disable-prelude \
|
|
|
+ --enable-openssl \
|
|
|
+ --enable-lastlog
|
|
|
make -C po update-gmo
|
|
|
make
|
|
|
# we do not use _smp_mflags because the build of sources in yacc/flex fails
|
|
@@ -207,8 +204,8 @@ for readme in modules/pam_*/README ; do
|
|
|
cp -f ${readme} doc/txts/README.`dirname ${readme} | sed -e 's|^modules/||'`
|
|
|
done
|
|
|
|
|
|
-rm -rf doc/txts/README.pam_tally*
|
|
|
-rm -rf doc/sag/html/*pam_tally*
|
|
|
+# Install the macros file
|
|
|
+install -D -m 644 %{SOURCE3} %{buildroot}%{_rpmconfigdir}/macros.d/macros.%{name}
|
|
|
|
|
|
# Install the binaries, libraries, and modules.
|
|
|
make install DESTDIR=%{buildroot} LDCONFIG=:
|
|
@@ -241,7 +238,6 @@ install -d -m 755 $RPM_BUILD_ROOT%{_sysconfdir}/motd.d
|
|
|
install -d -m 755 $RPM_BUILD_ROOT/usr/lib/motd.d
|
|
|
install -d -m 755 $RPM_BUILD_ROOT/run/motd.d
|
|
|
|
|
|
-
|
|
|
# Install man pages.
|
|
|
install -m 644 %{SOURCE12} %{SOURCE13} ${SOURCE17} %{buildroot}%{_mandir}/man5/
|
|
|
ln -sf system-auth.5 $RPM_BUILD_ROOT%{_mandir}/man5/password-auth.5
|
|
@@ -320,24 +316,11 @@ done
|
|
|
%clean
|
|
|
rm -rf %{buildroot}
|
|
|
|
|
|
-%post -p <lua>
|
|
|
-os.execute("/sbin/ldconfig")
|
|
|
-list = {"faillog", "tallylog"}
|
|
|
-for i, f in pairs(list) do
|
|
|
- fname = "/var/log/"..f
|
|
|
- if not posix.access(fname, "r") then
|
|
|
- f = io.open(fname, "w")
|
|
|
- f:close()
|
|
|
- posix.chmod(fname, "u+rw,go-rwx")
|
|
|
- end
|
|
|
-end
|
|
|
-if posix.access("/etc/rc.d/init.d/sshd", "x") then
|
|
|
- os.execute("/etc/rc.d/init.d/sshd condrestart")
|
|
|
-end
|
|
|
-
|
|
|
|
|
|
%files -f Linux-PAM.lang
|
|
|
%defattr(-,root,root)
|
|
|
+%license Copyright
|
|
|
+%license gpl-2.0.txt
|
|
|
%dir %{_pamconfdir}
|
|
|
%dir %{_pamvendordir}
|
|
|
%config(noreplace) %{_pamconfdir}/other
|
|
@@ -347,16 +330,11 @@ end
|
|
|
%config(noreplace) %{_pamconfdir}/smartcard-auth
|
|
|
%config(noreplace) %{_pamconfdir}/config-util
|
|
|
%config(noreplace) %{_pamconfdir}/postlogin
|
|
|
-%license Copyright
|
|
|
-%license gpl-2.0.txt
|
|
|
-%doc doc/txts
|
|
|
-%doc doc/sag/*.txt doc/sag/html
|
|
|
-%doc doc/specs/rfc86.0.txt
|
|
|
+%{_rpmconfigdir}/macros.d/macros.%{name}
|
|
|
/%{_lib}/libpam.so.*
|
|
|
/%{_lib}/libpamc.so.*
|
|
|
/%{_lib}/libpam_misc.so.*
|
|
|
%{_sbindir}/faillock
|
|
|
-%{_sbindir}/pam_console_apply
|
|
|
%{_sbindir}/pam_namespace_helper
|
|
|
%attr(4755,root,root) %{_sbindir}/pam_timestamp_check
|
|
|
%attr(4755,root,root) %{_sbindir}/unix_chkpwd
|
|
@@ -369,7 +347,6 @@ end
|
|
|
%dir %{_moduledir}
|
|
|
%{_moduledir}/pam_access.so
|
|
|
%{_moduledir}/pam_chroot.so
|
|
|
-%{_moduledir}/pam_console.so
|
|
|
%{_moduledir}/pam_debug.so
|
|
|
%{_moduledir}/pam_deny.so
|
|
|
%{_moduledir}/pam_echo.so
|
|
@@ -427,8 +404,6 @@ end
|
|
|
%dir %{_secconfdir}
|
|
|
%config(noreplace) %{_secconfdir}/access.conf
|
|
|
%config(noreplace) %{_secconfdir}/chroot.conf
|
|
|
-%config %{_secconfdir}/console.perms
|
|
|
-%config(noreplace) %{_secconfdir}/console.handlers
|
|
|
%config(noreplace) %{_secconfdir}/faillock.conf
|
|
|
%config(noreplace) %{_secconfdir}/group.conf
|
|
|
%config(noreplace) %{_secconfdir}/limits.conf
|
|
@@ -437,6 +412,7 @@ end
|
|
|
%dir %{_secconfdir}/namespace.d
|
|
|
%attr(755,root,root) %config(noreplace) %{_secconfdir}/namespace.init
|
|
|
%config(noreplace) %{_secconfdir}/pam_env.conf
|
|
|
+%config(noreplace) %{_secconfdir}/pwhistory.conf
|
|
|
%if %{WITH_SELINUX}
|
|
|
%config(noreplace) %{_secconfdir}/sepermit.conf
|
|
|
%dir /var/run/sepermit
|
|
@@ -447,9 +423,6 @@ end
|
|
|
%dir /usr/lib/motd.d
|
|
|
%config(noreplace) %{_secconfdir}/time.conf
|
|
|
%config(noreplace) %{_secconfdir}/opasswd
|
|
|
-%dir %{_secconfdir}/console.apps
|
|
|
-%dir %{_secconfdir}/console.perms.d
|
|
|
-%dir /var/run/console
|
|
|
%if %{WITH_SELINUX}
|
|
|
%dir /var/run/sepermit
|
|
|
%endif
|
|
@@ -464,13 +437,13 @@ end
|
|
|
|
|
|
%files devel
|
|
|
%defattr(-,root,root)
|
|
|
+%doc doc/specs/rfc86.0.txt
|
|
|
%{_includedir}/security/
|
|
|
%{_mandir}/man3/*
|
|
|
%{_libdir}/libpam.so
|
|
|
%{_libdir}/libpamc.so
|
|
|
%{_libdir}/libpam_misc.so
|
|
|
%{_libdir}/pkgconfig/*.pc
|
|
|
-%doc doc/adg/*.txt doc/adg/html
|
|
|
|
|
|
%if %{build_compat32}
|
|
|
%files -n compat32-%{name}
|
|
@@ -483,7 +456,6 @@ end
|
|
|
%dir %{_moduledir}
|
|
|
%{_moduledir}/pam_access.so
|
|
|
%{_moduledir}/pam_chroot.so
|
|
|
-%{_moduledir}/pam_console.so
|
|
|
%{_moduledir}/pam_debug.so
|
|
|
%{_moduledir}/pam_deny.so
|
|
|
%{_moduledir}/pam_echo.so
|
|
@@ -547,6 +519,9 @@ end
|
|
|
|
|
|
|
|
|
%changelog
|
|
|
+* Thu Oct 12 2023 Tomohiro "Tomo-p" KATO <tomop@teamgedoh.net> 1.5.3-1
|
|
|
+- updated to 1.5.3.
|
|
|
+
|
|
|
* Sat Nov 27 2021 Tomohiro "Tomo-p" KATO <tomop@teamgedoh.net> 1.5.2-2
|
|
|
- rebuild with libnsl2-2.0.0.
|
|
|
|