From dcd7a5748ef6820e3e0d386139d9dd946f0d71fa Mon Sep 17 00:00:00 2001
From: Daniel Baumann <daniel.baumann@progress-linux.org>
Date: Sat, 27 Apr 2024 14:01:37 +0200
Subject: Adding debian version 1.4.0-9+deb11u1.

Signed-off-by: Daniel Baumann <daniel.baumann@progress-linux.org>
---
 debian/libpam-modules.lintian-overrides | 13 +++++++++++++
 1 file changed, 13 insertions(+)
 create mode 100644 debian/libpam-modules.lintian-overrides

(limited to 'debian/libpam-modules.lintian-overrides')

diff --git a/debian/libpam-modules.lintian-overrides b/debian/libpam-modules.lintian-overrides
new file mode 100644
index 0000000..3eba0f9
--- /dev/null
+++ b/debian/libpam-modules.lintian-overrides
@@ -0,0 +1,13 @@
+# These are false positives because they don't use any functions that need
+# fortifying.  Since we know we have hardening turned on globally, suppress
+# them.  If we ever see this warning again for *other* modules, then we know
+# there's a real problem.
+libpam-modules: hardening-no-fortify-functions lib/*/security/pam_echo.so
+libpam-modules: hardening-no-fortify-functions lib/*/security/pam_filter.so
+libpam-modules: hardening-no-fortify-functions lib/*/security/pam_group.so
+libpam-modules: hardening-no-fortify-functions lib/*/security/pam_localuser.so
+libpam-modules: hardening-no-fortify-functions lib/*/security/pam_shells.so
+libpam-modules: hardening-no-fortify-functions lib/*/security/pam_wheel.so
+# pam_deny.so does not use any symbol from libc.
+libpam-modules: shared-lib-without-dependency-information lib/*/security/pam_deny.so
+
-- 
cgit v1.2.3