| 1 |
commit: 38ec013fbbf4b11185706d21fd079881f628f272 |
| 2 |
Author: Mike Gilbert <floppym <AT> gentoo <DOT> org> |
| 3 |
AuthorDate: Tue Nov 3 15:48:10 2020 +0000 |
| 4 |
Commit: Mike Gilbert <floppym <AT> gentoo <DOT> org> |
| 5 |
CommitDate: Tue Nov 3 15:48:10 2020 +0000 |
| 6 |
URL: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=38ec013f |
| 7 |
|
| 8 |
sys-apps/systemd: include system-auth in PAM config |
| 9 |
|
| 10 |
Closes: https://bugs.gentoo.org/751199 |
| 11 |
Signed-off-by: Mike Gilbert <floppym <AT> gentoo.org> |
| 12 |
|
| 13 |
sys-apps/systemd/files/gentoo-pam.patch | 33 +++++++++++++++++++++++++++++++++ |
| 14 |
sys-apps/systemd/systemd-246.6.ebuild | 1 + |
| 15 |
sys-apps/systemd/systemd-9999.ebuild | 1 + |
| 16 |
3 files changed, 35 insertions(+) |
| 17 |
|
| 18 |
diff --git a/sys-apps/systemd/files/gentoo-pam.patch b/sys-apps/systemd/files/gentoo-pam.patch |
| 19 |
new file mode 100644 |
| 20 |
index 00000000000..4d022b508ba |
| 21 |
--- /dev/null |
| 22 |
+++ b/sys-apps/systemd/files/gentoo-pam.patch |
| 23 |
@@ -0,0 +1,33 @@ |
| 24 |
+From b744751e2ced66c2ec191e8bd490cb9bdffc630a Mon Sep 17 00:00:00 2001 |
| 25 |
+From: Mike Gilbert <floppym@g.o> |
| 26 |
+Date: Tue, 3 Nov 2020 10:42:51 -0500 |
| 27 |
+Subject: [PATCH] pam: include system-auth for systemd --user |
| 28 |
+ |
| 29 |
+--- |
| 30 |
+ src/login/systemd-user.m4 | 3 ++- |
| 31 |
+ 1 file changed, 2 insertions(+), 1 deletion(-) |
| 32 |
+ |
| 33 |
+diff --git a/src/login/systemd-user.m4 b/src/login/systemd-user.m4 |
| 34 |
+index f6313f79fe..bcf84b4c64 100644 |
| 35 |
+--- a/src/login/systemd-user.m4 |
| 36 |
++++ b/src/login/systemd-user.m4 |
| 37 |
+@@ -5,7 +5,7 @@ |
| 38 |
+ m4_ifdef(`ENABLE_HOMED', |
| 39 |
+ -account sufficient pam_systemd_home.so |
| 40 |
+ )m4_dnl |
| 41 |
+-account sufficient pam_unix.so |
| 42 |
++account include system-auth |
| 43 |
+ account required pam_permit.so |
| 44 |
+ |
| 45 |
+ m4_ifdef(`HAVE_SELINUX', |
| 46 |
+@@ -13,6 +13,7 @@ session required pam_selinux.so close |
| 47 |
+ session required pam_selinux.so nottys open |
| 48 |
+ )m4_dnl |
| 49 |
+ session required pam_loginuid.so |
| 50 |
++session include system-auth |
| 51 |
+ session optional pam_keyinit.so force revoke |
| 52 |
+ m4_ifdef(`ENABLE_HOMED', |
| 53 |
+ -session optional pam_systemd_home.so |
| 54 |
+-- |
| 55 |
+2.29.0 |
| 56 |
+ |
| 57 |
|
| 58 |
diff --git a/sys-apps/systemd/systemd-246.6.ebuild b/sys-apps/systemd/systemd-246.6.ebuild |
| 59 |
index 3cca3239a60..4c0c3699148 100644 |
| 60 |
--- a/sys-apps/systemd/systemd-246.6.ebuild |
| 61 |
+++ b/sys-apps/systemd/systemd-246.6.ebuild |
| 62 |
@@ -210,6 +210,7 @@ src_prepare() { |
| 63 |
"${FILESDIR}/gentoo-generator-path-r2.patch" |
| 64 |
"${FILESDIR}/gentoo-systemctl-disable-sysv-sync.patch" |
| 65 |
"${FILESDIR}/gentoo-journald-audit.patch" |
| 66 |
+ "${FILESDIR}/gentoo-pam.patch" |
| 67 |
) |
| 68 |
fi |
| 69 |
|
| 70 |
|
| 71 |
diff --git a/sys-apps/systemd/systemd-9999.ebuild b/sys-apps/systemd/systemd-9999.ebuild |
| 72 |
index 3cca3239a60..4c0c3699148 100644 |
| 73 |
--- a/sys-apps/systemd/systemd-9999.ebuild |
| 74 |
+++ b/sys-apps/systemd/systemd-9999.ebuild |
| 75 |
@@ -210,6 +210,7 @@ src_prepare() { |
| 76 |
"${FILESDIR}/gentoo-generator-path-r2.patch" |
| 77 |
"${FILESDIR}/gentoo-systemctl-disable-sysv-sync.patch" |
| 78 |
"${FILESDIR}/gentoo-journald-audit.patch" |
| 79 |
+ "${FILESDIR}/gentoo-pam.patch" |
| 80 |
) |
| 81 |
fi |
Archives