From 15d8e9b50b6a27c6c99d031aa9aa3d8ec24029ac Mon Sep 17 00:00:00 2001
From: =?utf8?q?Jan=20R=C4=99korajski?= <baggins@pld-linux.org>
Date: Sun, 12 Feb 2012 12:23:11 +0000
Subject: [PATCH] - rel 5 - added pam_systemd.so to global system-auth config
 (rationale inside)

Changed files:
    pam.spec -> 1.324
    system-auth.pamd -> 1.14
---
 pam.spec         | 11 ++++++++++-
 system-auth.pamd |  1 +
 2 files changed, 11 insertions(+), 1 deletion(-)
diff --git a/pam.spec b/pam.spec
index 9c0dfda..0511c2a 100644
--- a/pam.spec
+++ b/pam.spec
@@ -17,7 +17,7 @@ Summary(tr.UTF-8):	ModÃ¼ler, artÄ±msal doÄrulama birimleri
 Summary(uk.UTF-8):	ÐÐ½ÑÑÑÑÐ¼ÐµÐ½Ñ, ÑÐ¾ Ð·Ð°Ð±ÐµÐ·Ð¿ÐµÑÑÑ Ð°ÑÑÐµÐ½ÑÐ¸ÑÑÐºÐ°ÑÑÑ Ð´Ð»Ñ Ð¿ÑÐ¾Ð³ÑÐ°Ð¼
 Name:		pam
 Version:	1.1.5
-Release:	4
+Release:	5
 Epoch:		1
 License:	GPL or BSD
 Group:		Base
@@ -379,6 +379,15 @@ if [ "$1" != 1 ]; then
 fi
 exit 0
 
+%triggerpostun -- %{name} < 1:1.1.5-5
+# We want it added for painless upgarde even if it mean log pollution for non-systemd
+# enabled systems,
+# If this module is not present on systemd enabled system then `systemctl restart sshd.service`
+# will kill all sessions.
+if ! grep -qs pam_systemd /etc/pam.d/system-auth; then
+	echo "session		optional	pam_systemd.so" >>/etc/pam.d/system-auth
+fi
+
 %post -p <lua>
 fh, error = io.open("/var/log/tallylog")
 if fh ~= nil then
diff --git a/system-auth.pamd b/system-auth.pamd
index 8510e3f..7457caa 100644
--- a/system-auth.pamd
+++ b/system-auth.pamd
@@ -16,5 +16,6 @@ password	required	pam_exec.so failok seteuid /usr/bin/make -C /var/db
 
 session		optional	pam_keyinit.so revoke
 session		required	pam_limits.so
+session		optional	pam_systemd.so
 session		[success=1 default=ignore]	pam_succeed_if.so service in crond quiet use_uid
 session		required	pam_unix.so
-- 
2.44.0

