Added debian directory from jessie 1.3.16, with changelog updates

Cleaned up to use simpler rules file as part of that import.
Also newer compat level, etc.

11 files changed, 414 insertions, 0 deletions

diff --git a/debian/README.Debian b/debian/README.Debian
new file mode 100644
index 0000000..d0bf25b
--- /dev/null
+++ b/debian/README.Debian
@@ -0,0 +1,5 @@
+NOTE: The Debian version of libpam-radius-auth uses as default configuration
+file /etc/pam_radius_auth.conf.
+Upstream has a default set to /etc/raddb/server that does not fit in Debian.
+Be aware that the documentation references has not been changed and they
+reflect upstream setups.
diff --git a/debian/changelog b/debian/changelog
new file mode 100644
index 0000000..978af83
--- /dev/null
+++ b/debian/changelog
@@ -0,0 +1,222 @@
+libpam-radius-auth (1.4.0) unstable; urgency=low
+
+   * Many changes.  See USAGE and git log for details.
+
+ -- Alan T. DeKok <aland@freeradius.org>  Wed, 17 Dec 2014 17:00:59 -0500
+
+libpam-radius-auth (1.3.17) unstable; urgency=low
+
+  * Allow any number of retries, instead of only up to 3.
+  * Add ruser option, to authenticate as PAM_RUSER instead of PAM_USER,
+    to allow applications such as 'su' to authenticate as the real user.
+    Patch from David Mitchell.
+  * Add 'localifdown' option.
+
+ -- Arran Cudbard-Bell <a.cudbardb@freeradius.org>  Wed, 24 Oct 2012 08:18:01 +0100
+
+commit 0c3af1fb2a1ae1befb7a8e366406ded63cb9fa59
+
+    Note 1.4.0
+
+libpam-radius-auth (1.3.16-4.4) unstable; urgency=low
+
+  * Non-maintainer upload to fix pending l10n issues.
+  * Remove debconf stuff that deals with a prehistoric transition.
+    Closes: #414926, #482458, #483032, #483081
+  * [Lintian] Set debhelper compatibility level in debian/compat
+  * [Lintian] No longer ignore errors in "make clean"
+  * [Lintian] Remove debian/conffiles that only contains a file in /etc
+    which is anyway automatically added
+
+ -- Christian Perrier <bubulle@debian.org>  Thu, 22 May 2008 19:14:50 +0200
+
+libpam-radius-auth (1.3.16-4.3) unstable; urgency=low
+
+  * NUM with maintainers consent
+  * Add German debconf translation. (Closes: #410536)
+
+ -- Helge Kreutzmann <debian@helgefjell.de>  Mon, 12 Feb 2007 18:01:57 +0100
+
+libpam-radius-auth (1.3.16-4.2) unstable; urgency=low
+
+  * NMU
+  * Add Spanish debconf translation. (Closes: #405445)
+
+ -- Javier Ruano <Javier.ruano@estudiante.uam.es>  Thu,  4 Jan 2007 14:08:51 +0100
+
+libpam-radius-auth (1.3.16-4.1) unstable; urgency=low
+
+  * Non-maintainer upload.
+  * Remove bashisms in debian/rules. (Closes: #379498)
+
+ -- Christine Spang <spang@mit.edu>  Wed, 23 Aug 2006 07:14:29 -0400
+
+libpam-radius-auth (1.3.16-4) unstable; urgency=low
+
+  * Add alternate Depends to unblock debconf-2.0 transition.
+  (Closes: #332003)
+
+  * Add Vietnamese debconf translation.
+  (Closes: #312442)
+
+  * Add Czech debconf translation.
+  (Closes: #316889)
+
+  * Add Swedish debconf translation.
+  (Closes: #333145)
+
+  * Bump standard version. No changes.
+
+ -- Fabio M. Di Nitto <fabbione@fabbione.net>  Sat, 15 Oct 2005 18:13:44 +0200
+
+libpam-radius-auth (1.3.16-3) unstable; urgency=high
+
+  * [SECURITY] Fix Denial of service:
+    - Add patch 002.CAN2005-0108.diff. (CAN2005-0108)
+
+  * Add french debconf translation. (Closes: #268027)
+
+  * Add dutch debconf translation. (Closes: #274897)
+
+ -- Fabio M. Di Nitto <fabbione@fabbione.net>  Wed, 19 Jan 2005 10:42:18 +0100
+
+libpam-radius-auth (1.3.16-2) unstable; urgency=high
+
+  * Acknowledge NMU. Thanks Michael for your help! (Closes: #266924)
+  * Remove spurious "echo foo1" from debian/config ;)
+
+ -- Fabio M. Di Nitto <fabbione@fabbione.net>  Mon, 23 Aug 2004 07:46:17 +0200
+
+libpam-radius-auth (1.3.16-1.2) unstable; urgency=high
+
+  * NMU: SECURITY: clarify logic in preinst
+
+ -- Michael Stone <mstone@debian.org>  Sat, 21 Aug 2004 11:26:34 -0400
+
+libpam-radius-auth (1.3.16-1.1) unstable; urgency=high
+
+  * NMU: SECURITY: fix incorrect permissions on /etc/pam_radius_auth.conf
+
+ -- Michael Stone <mstone@debian.org>  Sat, 21 Aug 2004 09:50:17 -0400
+
+libpam-radius-auth (1.3.16-1) unstable; urgency=low
+
+  * New upstream release
+  * New standard version: 3.6.1
+  * Removed patches that were accepted by upstream
+
+ -- Fabio M. Di Nitto <fabbione@fabbione.net>  Wed, 29 Oct 2003 07:12:50 +0100
+
+libpam-radius-auth (1.3.15-8) unstable; urgency=low
+
+  * New standard version 3.5.10
+  * fixed clean target in debian/rules
+  * fixed a call to the linker to avoid unresolved symbols on some archs
+    (Thanks to Jochen Friedrich <jochen@scram.de>)
+
+ -- Fabio M. Di Nitto <fabbione@fabbione.net>  Sun, 18 May 2003 10:05:07 +0200
+
+libpam-radius-auth (1.3.15-7) unstable; urgency=low
+
+  * The "fixed in NMU" upload fix (Closes: #188314)
+
+ -- Fabio M. Di Nitto <fabbione@fabbione.net>  Tue, 15 Apr 2003 07:05:44 +0200
+
+libpam-radius-auth (1.3.15-6) unstable; urgency=low
+
+  * Bumped standard version to: 3.5.9
+  * username (253 bytes) and password (128 bytes) length
+    are now RFC2138 compliant (Closes: #188314)
+
+ -- Fabio M. Di Nitto <fabbione@fabbione.net>  Thu, 10 Apr 2003 22:13:50 +0200
+
+libpam-radius-auth (1.3.15-5) unstable; urgency=low
+
+  * Reincluded the original INSTALL
+  * Included index.debian.html to point to the correct files.
+  * Added README.Debian with notes about configfile
+    location (Closes: #180576)
+
+ -- Fabio M. Di Nitto <fabbione@fabbione.net>  Mon, 10 Mar 2003 18:36:33 +0100
+
+libpam-radius-auth (1.3.15-4) unstable; urgency=low
+
+  * removed dh_testroot from debian/rules (build section)
+    to permit normal users to compile the package again
+
+ -- Fabio M. Di Nitto <fabbione@fabbione.net>  Thu, 16 Jan 2003 19:41:06 +0100
+
+libpam-radius-auth (1.3.15-3) unstable; urgency=low
+
+  * fixed a compilation warning for gcc3.2
+  * lintian and linda cleanup
+  * removed symlink in /usr/doc
+  * added two examples in the doc section
+  * updated to Standards-Version: 3.5.8
+  * new debian/rules to use debhelper
+  * moved *.diff in debian/patches
+
+ -- Fabio M. Di Nitto <fabbione@fabbione.net>  Thu, 16 Jan 2003 17:11:29 +0100
+
+libpam-radius-auth (1.3.15-2) unstable; urgency=low
+
+  * New maintainer upload, closes: #151254
+  * s/-Bshareable/-shared/g, closes: #156962
+  * made Suggests: point to radius-server, closes: #153987
+
+ -- Fabio M. Di Nitto <fabbione@fabbione.net>  Thu, 24 Oct 2002 22:35:23 +0200
+
+libpam-radius-auth (1.3.15-1) unstable; urgency=high (for big endians)
+
+  * New upstream release.
+  * It now compiles correctly for big endian architectures, closes: #149323
+  * Also it compiles correctly for 64-bit architectures.
+  * Removed misleading note in conffile, closes: #144502
+
+ -- Piotr Roszatycki <dexter@debian.org>  Tue, 11 Jun 2002 12:38:40 +0200
+
+libpam-radius-auth (1.3.14-1) unstable; urgency=low
+
+  * New upstream release, closes: #108189
+
+ -- Piotr Roszatycki <dexter@debian.org>  Mon, 27 Aug 2001 19:44:08 +0200
+
+libpam-radius-auth (1.3.13-1) unstable; urgency=low
+
+  * New upstream release
+  * Lintian clean
+
+ -- Piotr Roszatycki <dexter@debian.org>  Tue, 10 Jul 2001 16:10:09 +0200
+
+libpam-radius-auth (1.3.11-3) unstable; urgency=low
+
+  * Removed yada from Debian source, closes: #89268
+
+ -- Piotr Roszatycki <dexter@debian.org>  Tue, 13 Mar 2001 13:26:32 +0100
+
+libpam-radius-auth (1.3.11-2) unstable; urgency=low
+
+  * New yada and standards.
+  * Updates Build-Depends, closes: #84941
+
+ -- Piotr Roszatycki <dexter@debian.org>  Thu, 15 Feb 2001 18:47:23 +0000
+
+libpam-radius-auth (1.3.11-1) unstable; urgency=low
+
+  * New upstream release
+
+ -- Piotr Roszatycki <dexter@debian.org>  Wed, 19 Jul 2000 18:43:52 +0200
+
+libpam-radius-auth (1.3.10-2) unstable; urgency=medium
+
+  * New upstream source from CVS server.
+  * This version works well with ppp.
+
+ -- Piotr Roszatycki <dexter@debian.org>  Tue, 18 Jul 2000 17:29:06 +0200
+
+libpam-radius-auth (1.3.10-1) unstable; urgency=low
+
+  * UNRELEASED
+  * Initial Debian version.
+
+ -- Piotr Roszatycki <dexter@debian.org>  Sat, 15 Jul 2000 15:30:45 +0200
diff --git a/debian/compat b/debian/compat
new file mode 100644
index 0000000..ec63514
--- /dev/null
+++ b/debian/compat
@@ -0,0 +1 @@
+9
diff --git a/debian/control b/debian/control
new file mode 100644
index 0000000..b8090ae
--- /dev/null
+++ b/debian/control
@@ -0,0 +1,16 @@
+Source: libpam-radius-auth
+Maintainer: Fabio M. Di Nitto <fabbione@fabbione.net>
+Section: libs
+Priority: extra
+Standards-Version: 3.9.6
+Build-Depends: libpam0g-dev | libpam-dev, debhelper (>= 4.1.16)
+
+Package: libpam-radius-auth
+Architecture: any
+Depends: ${shlibs:Depends}
+Suggests: radius-server
+Description: The PAM RADIUS authentication module
+ This is the PAM to RADIUS authentication module. It allows any PAM-capable
+ machine to become a RADIUS client for authentication and accounting
+ requests. You will, however, need to supply your own RADIUS server to
+ perform the actual authentication
diff --git a/debian/copyright b/debian/copyright
new file mode 100644
index 0000000..8d52194
--- /dev/null
+++ b/debian/copyright
@@ -0,0 +1,54 @@
+This package was debianized by Fabio M. Di Nitto <fabbione@fabbione.net> on
+Thu, 31 Oct 2002 09:56:49 +0100
+
+It was downloaded from ftp://ftp.freeradius.org/pub/radius/
+
+Copyright (extracted from pam_radius_auth.c):
+
+/*
+ *  This module is a merger of an old version of pam_radius.c, and
+ * code which went into mod_auth_radius.c, with further modifications
+ * by Alan DeKok of CRYPTOCard Inc..
+ *
+ * The original pam_radius.c code is copyright (c) Cristian Gafton, 1996,
+ *                                             <gafton@redhat.com>
+ *
+ * The additional code is copyright (c) CRYPTOCard Inc, 1998.
+ *
+ *                                              All rights reserved.
+ *
+ * Redistribution and use in source and binary forms, with or without
+ * modification, are permitted provided that the following conditions
+ * are met:
+ * 1. Redistributions of source code must retain the above copyright
+ *    notice, and the entire permission notice in its entirety,
+ *    including the disclaimer of warranties.
+ * 2. Redistributions in binary form must reproduce the above copyright
+ *    notice, this list of conditions and the following disclaimer in the
+ *    documentation and/or other materials provided with the distribution.
+ * 3. The name of the author may not be used to endorse or promote
+ *    products derived from this software without specific prior
+ *    written permission.
+ *
+ * ALTERNATIVELY, this product may be distributed under the terms of
+ * the GNU Public License, in which case the provisions of the GPL are
+ * required INSTEAD OF the above restrictions.  (This clause is
+ * necessary due to a potential bad interaction between the GPL and
+ * the restrictions contained in a BSD-style copyright.)
+ *
+ * THIS SOFTWARE IS PROVIDED ``AS IS'' AND ANY EXPRESS OR IMPLIED
+ * WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
+ * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
+ * DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT,
+ * INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
+ * (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR
+ * SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
+ * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
+ * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
+ * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
+ * OF THE POSSIBILITY OF SUCH DAMAGE.
+ *
+ */
+
+On Debian GNU/Linux systems, the complete text of the GNU General
+Public License can be found in /usr/share/common-licenses/GPL file.
diff --git a/debian/libpam-radius-auth.postinst b/debian/libpam-radius-auth.postinst
new file mode 100644
index 0000000..4b0d38e
--- /dev/null
+++ b/debian/libpam-radius-auth.postinst
@@ -0,0 +1,6 @@
+#! /bin/sh
+
+set -e
+
+# needed for install, upgrade, remove, and purge, including aborts
+pam-auth-update --package
diff --git a/debian/libpam-radius-auth.prerm b/debian/libpam-radius-auth.prerm
new file mode 100644
index 0000000..19f03ae
--- /dev/null
+++ b/debian/libpam-radius-auth.prerm
@@ -0,0 +1,9 @@
+#!/bin/sh
+
+set -e
+
+if [ "$1" = remove ]; then
+	pam-auth-update --package --remove radius
+fi
+
+#DEBHELPER#
diff --git a/debian/pam_example b/debian/pam_example
new file mode 100644
index 0000000..1ab27e8
--- /dev/null
+++ b/debian/pam_example
@@ -0,0 +1,64 @@
+This is a simple and safe example on how to enable radius
+authentication to the console login on a Debian system and
+you are too lazy to read the USAGE documentation.
+
+Edit /etc/pam.d/login
+
+The default looks like:
+
+[SNIP]
+
+# Disallows other than root logins when /etc/nologin exists
+# (Replaces the `NOLOGINS_FILE' option from login.defs)
+auth       requisite  pam_nologin.so
+
+# This module parses /etc/environment (the standard for setting
+# environ vars) and also allows you to use an extended config
+# file /etc/security/pam_env.conf.
+# (Replaces the `ENVIRON_FILE' setting from login.defs)
+auth       required   pam_env.so
+
+# Standard Un*x authentication. The "nullok" line allows passwordless
+# accounts.
+@include common-auth
+
+[SNIP]
+
+
+Insert the following line:
+
+auth       sufficient   pam_radius_auth.so
+
+AFTER
+
+auth       required   pam_env.so
+
+and BEFORE
+
+# Standard Un*x authentication. The "nullok" line allows passwordless
+# accounts.
+@include common-auth
+
+so that it will looks like:
+
+[SNIP]
+
+# This module parses /etc/environment (the standard for setting
+# environ vars) and also allows you to use an extended config
+# file /etc/security/pam_env.conf.
+# (Replaces the `ENVIRON_FILE' setting from login.defs)
+auth       required   pam_env.so
+
+##### RADIUS #####
+auth       sufficient   pam_radius_auth.so
+
+# Standard Un*x authentication. The "nullok" line allows passwordless
+# accounts.
+@include common-auth
+
+[SNIP]
+
+Try now to login in one of the consoles using the radius password.
+If it fails the system will prompt again for a password. This time
+provide the local one.
+
diff --git a/debian/radius b/debian/radius
new file mode 100644
index 0000000..5389ed1
--- /dev/null
+++ b/debian/radius
@@ -0,0 +1,14 @@
+Name: RADIUS authentication
+Default: yes
+Priority: 257
+Auth-Type: Primary
+Auth:
+	[authinfo_unavail=ignore success=end default=ignore] pam_radius_auth.so
+
+Account-Type: Primary
+Account:
+	[authinfo_unavail=ignore success=end perm_denied=bad default=ignore] pam_radius_auth.so
+
+Session-Type: Additional
+Session:
+	[authinfo_unavail=ignore success=ok default=ignore] pam_radius_auth.so
diff --git a/debian/rules b/debian/rules
new file mode 100755
index 0000000..4e68084
--- /dev/null
+++ b/debian/rules
@@ -0,0 +1,22 @@
+#!/usr/bin/make -f
+
+CFLAGS = $(shell dpkg-buildflags --get CFLAGS)
+# -Wnostrict-aliasing for md5.c
+ifneq (,$(findstring noopt,$(DEB_BUILD_OPTIONS)))
+	CFLAGS += -O0
+else
+	CFLAGS += -O2
+endif
+CFLAGS+=-g3 -Wno-strict-aliasing -DCONF_FILE=\"/etc/pam_radius_auth.conf\"
+
+ifeq ($(DEB_HOST_GNU_CPU),(hppa|m68k|mips|powerpc|s390|sparc|sparc64|sheb))
+	CFLAGS += -DHIGHFIRST
+endif
+export CFLAGS
+
+%:
+	dh  $@
+
+override_dh_auto_configure:
+	./configure
+
diff --git a/debian/source/format b/debian/source/format
new file mode 100644
index 0000000..af745b3
--- /dev/null
+++ b/debian/source/format
@@ -0,0 +1 @@
+3.0 (git)