Mailinglist Archive: opensuse-commit (1177 mails)

[root@xxxxxxxxxxxxxxx (h_root)]

Hello community,

here is the log from the commit of package pam_mount for openSUSE:Factory
checked in at Mon Jan 12 18:18:10 CET 2009.


--------
--- pam_mount/pam_mount.changes 2008-11-04 13:57:09.000000000 +0100
+++ /mounts/work_src_done/STABLE/pam_mount/pam_mount.changes    2009-01-12 
14:47:33.838312000 +0100
@@ -1,0 +2,12 @@
+Mon Jan 12 11:23:15 CET 2009 - mc@xxxxxxx
+
+- fix <logout> feature (bnc#461333)
+  * enable automatic wait, term and kill. Required to terminate
+    pulseaudio
+  * add <logout> during convert to converted config
+- remove passwdehd. (CVE-2008-5138) (bnc#465303)
+  does not work at all with new config format.
+- recognize required and deny options for luserconf
+  (bnc#463524)
+
+-------------------------------------------------------------------

calling whatdependson for head-i586


New:
----
  pam_mount-0.47-convert-add-logout.dif
  pam_mount-0.47-enable-logout-kill.dif
  pam_mount-0.47-fix-logout.dif
  pam_mount-0.47-recognize-required-and-deny-option-for-luserconfig.dif

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Other differences:
------------------
++++++ pam_mount.spec ++++++
--- /var/tmp/diff_new_pack.X27397/_old  2009-01-12 18:17:51.000000000 +0100
+++ /var/tmp/diff_new_pack.X27397/_new  2009-01-12 18:17:51.000000000 +0100
@@ -1,7 +1,7 @@
 #
 # spec file for package pam_mount (Version 0.47)
 #
-# Copyright (c) 2008 SUSE LINUX Products GmbH, Nuernberg, Germany.
+# Copyright (c) 2009 SUSE LINUX Products GmbH, Nuernberg, Germany.
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -23,7 +23,7 @@
 BuildRequires:  linux-kernel-headers
 Summary:        A PAM Module that can Mount Volumes for a User Session
 Version:        0.47
-Release:        12
+Release:        14
 # psmisc: /bin/fuser
 Recommends:     cifs-mount psmisc
 Recommends:     cryptsetup
@@ -37,6 +37,10 @@
 Patch3:         pam_mount-0.47-fix-replace-options.dif
 Patch4:         pam_mount-0.47-fix-deny_ok.dif
 Patch5:         pam_mount-0.47-remove-lsof-convert.dif
+Patch6:         pam_mount-0.47-fix-logout.dif
+Patch7:         pam_mount-0.47-enable-logout-kill.dif
+Patch8:         pam_mount-0.47-convert-add-logout.dif
+Patch9:         
pam_mount-0.47-recognize-required-and-deny-option-for-luserconfig.dif
 BuildRoot:      %{_tmppath}/%{name}-%{version}-build
 Url:            http://pam-mount.sourceforge.net/
 PreReq:         coreutils, perl-XML-Writer
@@ -77,6 +81,10 @@
 %patch3
 %patch4
 %patch5
+%patch6
+%patch7 -p1
+%patch8 -p1
+%patch9
 
 %build
 %{suse_update_config -f}
@@ -94,6 +102,8 @@
 # remove mount_ehd, it's only for OpenBSD
 rm $RPM_BUILD_ROOT%{_prefix}/bin/mount_ehd
 rm $RPM_BUILD_ROOT%{_mandir}/man8/mount_ehd.8
+rm $RPM_BUILD_ROOT%{_prefix}/bin/passwdehd
+rm $RPM_BUILD_ROOT%{_mandir}/man8/passwdehd.8
 #install the docs
 mkdir -p ${RPM_BUILD_ROOT}/%_docdir/%{name}/examples
 cp doc/bugs.txt doc/changelog.txt LICENSE* doc/faq.txt doc/todo.txt 
doc/options.txt doc/pam_mount.txt ${RPM_BUILD_ROOT}/%_docdir/%name/
@@ -117,7 +127,6 @@
 /%{_lib}/security/pam_mount*.so
 %{_prefix}/bin/mkehd
 %{_prefix}/bin/autoehd
-%{_prefix}/bin/passwdehd
 %{_prefix}/bin/pmt-fd0ssh
 %{_prefix}/bin/pmt-ofl
 /sbin/mount.crypt
@@ -131,11 +140,19 @@
 %doc %{_mandir}/man8/autoehd.8.gz
 %doc %{_mandir}/man8/mount.crypt.8.gz
 %doc %{_mandir}/man8/pam_mount.8.gz
-%doc %{_mandir}/man8/passwdehd.8.gz
 %doc %{_mandir}/man8/pmvarrun.8.gz
 %doc %{_mandir}/man8/umount.crypt.8.gz
 
 %changelog
+* Mon Jan 12 2009 mc@xxxxxxx
+- fix <logout> feature (bnc#461333)
+  * enable automatic wait, term and kill. Required to terminate
+  pulseaudio
+  * add <logout> during convert to converted config
+- remove passwdehd. (CVE-2008-5138) (bnc#465303)
+  does not work at all with new config format.
+- recognize required and deny options for luserconf
+  (bnc#463524)
 * Tue Nov 04 2008 mc@xxxxxxx
 - fix failing convert script. (bnc#438842)
 * Mon Oct 27 2008 mc@xxxxxxx
@@ -290,7 +307,7 @@
 - Update to version 0.9.25
 * Mon Apr 11 2005 kukuk@xxxxxxx
 - Update to version 0.9.22 [Bug #65110]
-* Fri Jan 16 2004 kukuk@xxxxxxx
+* Thu Jan 15 2004 kukuk@xxxxxxx
 - Build as user
 - Add pam-devel to neededforbuild
 * Mon Jan 12 2004 kukuk@xxxxxxx

++++++ pam_mount-0.47-convert-add-logout.dif ++++++
--- orig/pam_mount-0.47/scripts/convert_pam_mount_conf.pl       2008-09-05 
05:28:34.000000000 +0200
+++ pam_mount-0.47/scripts/convert_pam_mount_conf.pl    2009-01-10 
18:07:15.000000000 +0100
@@ -26,6 +26,7 @@
 
 my %callbacks = (
        "debug"           => \&callback_debug,
+        "logout"          => \&callback_logout,
        "mkmountpoint"    => \&callback_mkmountpoint,
        "fsckloop"        => \&callback_fsckloop,
        "luserconf"       => \&callback_luserconf,
@@ -67,6 +68,14 @@
        $writer->emptyTag("debug", "enable" => $fields[1]);
 }
 
+sub callback_logout
+{
+       my @fields = @_;
+
+        # we create a default entry here, fields are not evaluated
+       $writer->emptyTag("logout", "wait" => "2000", "hup" => "0", "term" => 
"1", "kill" => "1");
+}
+
 sub callback_mkmountpoint
 {
        my @fields = @_;
@@ -401,6 +415,18 @@
                              "-" x 40, "\n";
                        return 1;
                }
+
+                # insert new <logout> field after debug
+
+                if( $fields[0] eq "debug" )
+                {
+                       if ($debug) {
+                                print STDERR "callback_logout called: 
(default)\n";
+                        }
+
+                        $callbacks{"logout"}->();
+                        $writer->raw("\n\n");
+                }
        }
 
        return 0;
++++++ pam_mount-0.47-enable-logout-kill.dif ++++++
--- orig/pam_mount-0.47/config/pam_mount.conf.xml       2008-09-05 
05:28:34.000000000 +0200
+++ pam_mount-0.47/config/pam_mount.conf.xml    2009-01-10 17:52:15.000000000 
+0100
@@ -33,7 +33,7 @@
 <mntoptions require="nosuid,nodev" />
 <path>/sbin:/bin:/usr/sbin:/usr/bin:/usr/local/sbin:/usr/local/bin</path>
 
-<logout wait="0" hup="0" term="0" kill="0" />
+<logout wait="2000" hup="0" term="1" kill="1" />
 
 
                <!-- pam_mount parameters: Volume-related -->
++++++ pam_mount-0.47-fix-logout.dif ++++++
--- src/ofl-lib.c
+++ src/ofl-lib.c       2009/01/12 09:29:20
@@ -206,7 +206,7 @@
        while ((de = HXdir_read(dir)) != NULL) {
                if (*de == '.')
                        continue;
-               snprintf(tmp, sizeof(tmp), "%s/%s", path, de);
+               snprintf(tmp, sizeof(tmp), "%s/%s/fd", path, de);
                if (lstat(tmp, &data->sb) < 0 || !S_ISDIR(data->sb.st_mode))
                        continue;
                ofl_taskfd(mnt, tmp, data);
++++++ pam_mount-0.47-recognize-required-and-deny-option-for-luserconfig.dif 
++++++
--- src/rdconf2.c
+++ src/rdconf2.c       2009/01/12 12:16:30
@@ -158,6 +158,7 @@
                        misc_log("Luser volume for %s is missing options that "
                                 "are required by global <mntoptions>\n",
                                 vol->mountpoint);
+                       return false;
                }
                if (config->options_allow->items != 0 &&
                    !allow_ok(config->options_allow, &vol->options)) {
@@ -171,6 +172,7 @@
                        misc_log("Luser volume for %s has options that are "
                                 "denied by global <mntoptions>\n",
                                 vol->mountpoint);
+                       return false;
                }
        }
 


++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++



Remember to have fun...

-- 
To unsubscribe, e-mail: opensuse-commit+unsubscribe@xxxxxxxxxxxx
For additional commands, e-mail: opensuse-commit+help@xxxxxxxxxxxx