Version 2.6.7 (released 2021-05-01) pam_oath: Support variables in usersfile string parameter. the usersfile string in the pam_oath configuration file. The placeholder values allow the user credentials file to be stored in a file path that is relative to the user, and mimics similar behavior found in google-authenticator-libpam. The motivation for these changes is to allow for non-privileged processes to use pam_oath (e.g., for 2FA with xscreensaver). Non-privileged and non-suid programs are unable to use pam_oath. These changes are a proposed alternative to a suid helper binary as well. Thanks to Jason Graham <jgraham@compukix.net> for the patch. See https://gitlab.com/oath-toolkit/oath-toolkit/-/merge_requests/12. doc: Fix project URL in man pages. Thanks to Jason Graham <jgraham@compukix.net> for the patch. Fixes https://gitlab.com/oath-toolkit/oath-toolkit/-/issues/19. build: Drop use of libxml’s AM_PATH_XML2 in favor of pkg-config. build: Modernize autotools usage. Most importantly, no longer use -Werror with AM_INIT_AUTOMAKE to make rebuilding from source more safe with future automake versions. Updated gnulib files. Version 2.6.6 (released 2021-01-20) oathtool: Handle HOTP --counter values larger than 0x7FFFFFFFFFFFFFFF. Thanks to Jason Lai <jason99.lai@gmail.com> for report. doc: GTK-DOC manual improvements. Updated gnulib files. Fixes test-parse-datetime self-check. Fixes https://gitlab.com/oath-toolkit/oath-toolkit/-/issues/20. Version 2.6.5 (released 2020-12-29) oathtool: Support for reading KEY and OTP from standard input or filename. KEY and OTP may now be given as - to mean stdin, or @FILE to read from a particular file. This is recommended on multi-user systems, since secrets as command line parameters leak. Based on a patch from Ian Jackson <ijackson@chiark.greenend.org.uk>. Fixes #6. pam_oath: Fix unlikely logic fail on out of memory conditions. Patch from Matthias Gerstner. Doc fixes. Version 2.6.4 (released 2020-11-11) libpskc: New --with-xmlsec-crypto-engine to hard-code crypto engine. Fixes https://gitlab.com/oath-toolkit/oath-toolkit/-/issues/16. Use it like --with-xmlsec-crypto-engine=gnutls or --with-xmlsec-crypto-engine=openssl if the default dynamic loading fails because of runtime linker search path issues. oathtool --totp --verbose now prints TOTP hash mode. Fixes https://gitlab.com/oath-toolkit/oath-toolkit/-/issues/4. oathtool: Hash names (e.g., SHA256) for --totp are now upper case. Fixes https://gitlab.com/oath-toolkit/oath-toolkit/-/issues/3. Lower/mixed case hash names are supported for compatibility. pam_oath: Fail gracefully for missing users. Fixes https://savannah.nongnu.org/support/index.php?109111. This allows you to incrementally add support for OATH authentication instead of forcing it on all users. See updated pam_oath/README on the [user_unknown=ignore success=ok] parameter that can now be supplied to PAM configuration. Patch by Antoine Beaupré <anarcat@debian.org>. Fix libpskc memory corruption bug. Fixes https://savannah.nongnu.org/support/?108736. Thanks to David Woodhouse and Jaroslav Å karvada for report, self check and patch. Fix man pages. Fixes https://savannah.nongnu.org/support/?108312. Thanks to Jaroslav Å karvada for the patch. Build fixes. Version 2.6.3 (released 2020-11-07) pam_oath: Fix self-tests. build: Update gnulib. Fix compiler warnings. Doc fixes.
ping
The bug has been closed via the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=93b66e313c8f85be009ac2c6ee3a70938ee49058 commit 93b66e313c8f85be009ac2c6ee3a70938ee49058 Author: Sam James <sam@gentoo.org> AuthorDate: 2023-03-05 12:35:32 +0000 Commit: Sam James <sam@gentoo.org> CommitDate: 2023-03-05 12:37:22 +0000 sys-auth/oath-toolkit: add 2.6.7 Bug: https://bugs.gentoo.org/719314 Closes: https://bugs.gentoo.org/683864 Closes: https://bugs.gentoo.org/719310 Closes: https://bugs.gentoo.org/775278 Closes: https://bugs.gentoo.org/827887 Closes: https://bugs.gentoo.org/837791 Closes: https://bugs.gentoo.org/898740 Signed-off-by: Sam James <sam@gentoo.org> sys-auth/oath-toolkit/Manifest | 1 + .../oath-toolkit-2.6.7-new-xmlsec-tests.patch | 74 ++++++++++++++++++++++ sys-auth/oath-toolkit/oath-toolkit-2.6.7.ebuild | 74 ++++++++++++++++++++++ 3 files changed, 149 insertions(+)
Re-opening for stabilisation and cleanup.
arm64 done
ppc64 done
amd64 done
Unable to check for sanity: > no match for package: sys-auth/oath-toolkit-2.6.7
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=313acdc21a558ff82c633a93796ac467cad4f385 commit 313acdc21a558ff82c633a93796ac467cad4f385 Author: Sam James <sam@gentoo.org> AuthorDate: 2023-04-18 05:28:11 +0000 Commit: Sam James <sam@gentoo.org> CommitDate: 2023-04-18 05:28:11 +0000 sys-auth/oath-toolkit: unconditionally depend on xmlsec psks can't be reliably disabled. Bug: https://bugs.gentoo.org/827887 Bug: https://bugs.gentoo.org/904361 Signed-off-by: Sam James <sam@gentoo.org> ...olkit-2.6.7-r1.ebuild => oath-toolkit-2.6.7-r2.ebuild} | 15 +++++---------- 1 file changed, 5 insertions(+), 10 deletions(-)
x86 done
arm done all arches done
The bug has been closed via the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=0803d218823ef92b6b0ac09ce44f1172ca36fa9b commit 0803d218823ef92b6b0ac09ce44f1172ca36fa9b Author: Andreas Sturmlechner <asturm@gentoo.org> AuthorDate: 2023-04-29 08:56:54 +0000 Commit: Andreas Sturmlechner <asturm@gentoo.org> CommitDate: 2023-04-29 21:51:27 +0000 sys-auth/oath-toolkit: drop 2.6.2-r3, EAPI-6-- Closes: https://bugs.gentoo.org/827887 Signed-off-by: Andreas Sturmlechner <asturm@gentoo.org> sys-auth/oath-toolkit/Manifest | 1 - .../files/oath-toolkit-2.6.2-gcc7.patch | 80 ----------------- .../files/oath-toolkit-2.6.2-glibc228.patch | 100 --------------------- sys-auth/oath-toolkit/metadata.xml | 1 - sys-auth/oath-toolkit/oath-toolkit-2.6.2-r3.ebuild | 77 ---------------- 5 files changed, 259 deletions(-)
