On Sun, Mar 4, 2012 at 19:10:04 +0100, gregor herrmann wrote: > diff -u libpam-rsa-0.8-9/debian/changelog libpam-rsa-0.8-9/debian/changelog > --- libpam-rsa-0.8-9/debian/changelog > +++ libpam-rsa-0.8-9/debian/changelog > @@ -1,3 +1,12 @@ > +libpam-rsa (0.8-9-2.3) UNRELEASED; urgency=low > + > + * Non-maintainer upload. > + * Fix "code to hash hostname and username is broken": openssl output has > + changed, use shasum in the pamrsakp script. > + (Closes: #649463) > + > + -- gregor herrmann <gre...@debian.org> Sun, 04 Mar 2012 17:57:39 +0100 > + > libpam-rsa (0.8-9-2.2) unstable; urgency=low > > * Non-maintainer upload.
Isn't this missing a change to debian/control to add a perl dependency?
> only in patch2:
> unchanged:
> --- libpam-rsa-0.8-9.orig/script/pamrsakp
> +++ libpam-rsa-0.8-9/script/pamrsakp
> @@ -23,8 +23,8 @@
> # (c) 2006 Vesa-Matti Kari <hyperll...@laamanaama.helsinki.fi>
> #
>
> -O=${OPENSSL-openssl}
> -CF=${PAMRSAKPCNF-/etc/security/pamrsakp.cnf}
> +O=${OPENSSL:-openssl}
> +CF=${PAMRSAKPCNF:-/etc/security/pamrsakp.cnf}
>
>
> if [ $# -ne 6 ]; then
> @@ -46,7 +46,7 @@
>
>
> if [ x${HASHTYPE} = "xsha1" ]; then
> - PRIVKEY=`echo -n ${USER} | ${O} dgst -sha1 | cut -b -8`.pem
> + PRIVKEY=`echo -n ${USER} | shasum -a 1 -t | cut -b -8`.pem
> elif [ x${HASHTYPE} = "xnone" ]; then
> PRIVKEY=${USER}.pem
> else
> @@ -60,7 +60,7 @@
> fi
>
>
> -HOSTHASH=`echo -n ${TARGETHOST} | ${O} dgst -sha1 | cut -b -8`
> +HOSTHASH=`echo -n ${TARGETHOST} | shasum -a 1 -t | cut -b -8`
>
>
> # Create the public and private key directories if they do not exist
Cheers,
Julien
signature.asc
Description: Digital signature
