Script 'mail_helper' called by obssrc
Hello community,
here is the log from the commit of package shadow for openSUSE:Factory checked
in at 2023-08-18 19:26:58
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/shadow (Old)
and /work/SRC/openSUSE:Factory/.shadow.new.1766 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "shadow"
Fri Aug 18 19:26:58 2023 rev:58 rq:1104351 version:4.14.0
Changes:
--------
--- /work/SRC/openSUSE:Factory/shadow/shadow.changes 2023-04-21
14:15:35.738104354 +0200
+++ /work/SRC/openSUSE:Factory/.shadow.new.1766/shadow.changes 2023-08-18
19:26:59.783169269 +0200
@@ -1,0 +2,62 @@
+Thu Aug 17 10:14:14 UTC 2023 - Michael Vetter <mvet...@suse.com>
+
+- Remove dependency on libbsd:
+ On Tumbleweed we have glibc 2.38 already thus string functions
+ like strlcpy will be present and won't be needed from libbsd.
+ `readpassphrase()` is then the only function from libbsd not present.
+ Upstream shadow has an in tree copy of it, that is used when the
+ `--without-libbsd` flag is passed along.
+ By relying on glibc 2.38 we don't need to add libbsd and libmd
+ to our ring0 but can't easily upgrade on SLE.
+
+-------------------------------------------------------------------
+Thu Aug 17 06:43:38 UTC 2023 - Michael Vetter <mvet...@suse.com>
+
+- Update to 4.14.0:
+ * configure: add with-libbsd option
+ * Code cleanup
+ * Replace utmp interface #757
+ * new option enable-logind #674
+ * shadow userdel: add the adaptation to the busybox ps in
01-kill_user_procs.sh
+ * chsh: warn if root sets a shell not listed in /etc/shells #535
+ * newgrp: fix potential string injection
+ * lastlog: fix alignment of Latest header
+ * Fix yescrypt support #748
+ * chgpasswd: Fix segfault in command-line options
+ * gpasswd: Fix password leak
+ * Add --prefix to passwd, chpasswd and chage #714 (bsc#1206627)
+ * usermod: fix off-by-one issues #701
+ * ch(g)passwd: Check selinux permissions upon startup #675
+ * sub_[ug]id_{add,remove}: fix return values
+ * chsh: Verify that login shell path is absolute #730
+ * process_prefix_flag: Drop privileges
+ * run_parts for groupadd and groupdel #706
+ * newgrp/useradd: always set SIGCHLD to default
+ * useradd/usermod: add --selinux-range argument #698
+ * sssd: skip flushing if executable does not exist #699
+ * semanage: Do not set default SELinux range #676
+ * Add control character check #687
+ * usermod: respect --prefix for --gid option
+ * Fix null dereference in basename
+ * newuidmap and newgidmap: support passing pid as fd
+ * Prevent out of boundary access #633
+ * Explicitly override only newlines #633
+ * Correctly handle illegal system file in tz #633
+ * Supporting vendor given -shells- configuration file #599
+ * Warn if failed to read existing /etc/nsswitch.conf
+ * chfn: new_fields: fix wrong fields printed
+ * Allow supplementary groups to be added via config file #586
+ * useradd: check if subid range exists for user #592 (rh#2012929)
+- Refresh useradd-default.patch
+- Remove upstreamed patches:
+ * useradd-userkeleton.patch
+ * shadow-audit-no-id.patch
+ * shadow-fix-print-login-timeout.patch
+ * shadow-CVE-2023-29383.patch
+- Dont build lastlog (lastlog.legacy) anymore since we
+ use lastlog2 by default now.
+- This release depends either on libbsd or on glibc >= 2.38
+ which only recently got released. libbsd (and libmd) would be
+ new packages in our ring0
+
+-------------------------------------------------------------------
Old:
----
shadow-4.13.tar.xz
shadow-4.13.tar.xz.asc
shadow-CVE-2023-29383.patch
shadow-audit-no-id.patch
shadow-fix-print-login-timeout.patch
useradd-userkeleton.patch
New:
----
shadow-4.14.0.tar.xz
shadow-4.14.0.tar.xz.asc
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ shadow.spec ++++++
--- /var/tmp/diff_new_pack.pUEWj0/_old 2023-08-18 19:27:01.415172196 +0200
+++ /var/tmp/diff_new_pack.pUEWj0/_new 2023-08-18 19:27:01.423172211 +0200
@@ -22,7 +22,7 @@
%define no_config 1
%endif
Name: shadow
-Version: 4.13
+Version: 4.14.0
Release: 0
Summary: Utilities to Manage User and Group Accounts
License: BSD-3-Clause AND GPL-2.0-or-later
@@ -46,16 +46,8 @@
Patch3: shadow-login_defs-comments.patch
# PATCH-FEATURE-SUSE shadow-login_defs-suse.patch ku...@suse.com -- Customize
login.defs.
Patch4: shadow-login_defs-suse.patch
-# PATCH-FEATURE-SUSE Copy also skeleton files from /usr/etc/skel (boo#1173321)
(gh/shadow-maint/shadow#591)
-Patch5: useradd-userkeleton.patch
# PATCH-FIX-SUSE disable_new_audit_function.patch adam.ma...@suse.de --
Disable newer libaudit functionality for older distributions.
-Patch6: disable_new_audit_function.patch
-# PATCH-FIX-UPSTREAM shadow-audit-no-id.patch mvet...@suse.com -- Fix useradd
audit event logging of ID field (bsc#1205502) (gh/shadow-maint/shadow#606)
-Patch7: shadow-audit-no-id.patch
-# PATCH-FIX-UPSTREAM shadow-fix-print-login-timeout.patch mvet...@suse.com --
Fix print full login timeout message (gh/shadow-maint/shadow#621)
-Patch8: shadow-fix-print-login-timeout.patch
-# PATCH-FIX-UPSTREAM shadow-CVE-2023-29383.patch mvet...@suse.com -- Check
control chracters in chfn (bsc#1210507)
-Patch9: shadow-CVE-2023-29383.patch
+Patch5: disable_new_audit_function.patch
BuildRequires: audit-devel > 2.3
BuildRequires: autoconf
BuildRequires: automake
@@ -66,6 +58,8 @@
BuildRequires: libtool
BuildRequires: pam-devel
BuildRequires: xz
+# we depend on libbsd or glibc >= 2.38 for the strlcpy() (and
readpassphrase()) functions
+BuildRequires: glibc-devel >= 2.38
Requires: login_defs >= %{version}
Requires(pre): group(root)
Requires(pre): group(shadow)
@@ -119,13 +113,9 @@
%patch2
%patch3
%patch4
-%patch5
%if 0%{?suse_version} < 1330
-%patch6 -p1
+%patch5 -p1
%endif
-%patch7 -p1
-%patch8 -p1
-%patch9 -p1
iconv -f ISO88591 -t utf-8 doc/HOWTO > doc/HOWTO.utf8
mv -v doc/HOWTO.utf8 doc/HOWTO
@@ -146,6 +136,7 @@
--with-nscd \
--with-selinux \
--without-libcrack \
+ --without-libbsd \
--with-group-name-max-length=32 \
--enable-vendordir=%{_distconfdir}
%make_build
@@ -230,12 +221,6 @@
fi
mkdir -p %{buildroot}%{_sysconfdir}/login.defs.d
-%if 0%{?suse_version} >= 1599
-# Rename lastlog to lastlog.legacy, as it got replaced by lastlog2
-mv %{buildroot}/%{_bindir}/lastlog %{buildroot}/%{_bindir}/lastlog.legacy
-mv %{buildroot}/%{_mandir}/man8/lastlog.8
%{buildroot}/%{_mandir}/man8/lastlog.legacy.8
-%endif
-
%find_lang shadow
%pre
@@ -335,11 +320,6 @@
%verify(not mode) %attr(4755,root,shadow) %{_bindir}/passwd
%verify(not mode) %attr(4755,root,shadow) %{_bindir}/newgidmap
%verify(not mode) %attr(4755,root,shadow) %{_bindir}/newuidmap
-%if 0%{?suse_version} >= 1599
-%{_bindir}/lastlog.legacy
-%else
-%{_bindir}/lastlog
-%endif
%{_bindir}/sg
%{_bindir}/getsubids
%attr(0755,root,root) %{_sbindir}/groupadd
@@ -371,11 +351,6 @@
%{_mandir}/man8/groupdel.8%{?ext_man}
%{_mandir}/man8/groupmod.8%{?ext_man}
%{_mandir}/man8/grpck.8%{?ext_man}
-%if 0%{?suse_version} >= 1599
-%{_mandir}/man8/lastlog.legacy.8%{?ext_man}
-%else
-%{_mandir}/man8/lastlog.8%{?ext_man}
-%endif
%{_mandir}/man8/newusers.8%{?ext_man}
%{_mandir}/man8/pwck.8%{?ext_man}
%{_mandir}/man8/pwconv.8%{?ext_man}
++++++ shadow-4.13.tar.xz -> shadow-4.14.0.tar.xz ++++++
++++ 96343 lines of diff (skipped)
++++++ useradd-default.patch ++++++
--- /var/tmp/diff_new_pack.pUEWj0/_old 2023-08-18 19:27:02.519174176 +0200
+++ /var/tmp/diff_new_pack.pUEWj0/_new 2023-08-18 19:27:02.523174183 +0200
@@ -2,13 +2,13 @@
===================================================================
--- src/useradd.c.orig
+++ src/useradd.c
-@@ -101,7 +101,7 @@ FILE *shadow_logfd = NULL;
+@@ -87,7 +87,7 @@ const char *Prog;
/*
* These defaults are used if there is no defaults file.
*/
-static gid_t def_group = 1000;
+static gid_t def_group = 100;
+ static const char *def_groups = "";
static const char *def_gname = "other";
static const char *def_home = "/home";
- static const char *def_shell = "/bin/bash";
