Recently I upgraded from Fedora 37 to Fedora 38.
Only problem I noticed was, during the login, it treats my Yubikey entry as a password instead of a U2F entry. So I can only login with my actual password instead of the configured U2F.
So it is ignoring my u2f setup in the pam.d
Interestingly, it only affected login. U2F for sudo and cinnamon-screensaver still work.
The entry that worked in Fedora 37 was made in /etc/pam.d/login
The login u2f entry
#%PAM-1.0
auth include u2f-sufficient
auth substack system-auth
auth include postlogin
account required pam_nologin.so
account include system-auth
password include system-auth
# pam_selinux.so close should be the first session rule
session required pam_selinux.so close
session required pam_loginuid.so
# pam_selinux.so open should only be followed by sessions to be executed in the user context
session required pam_selinux.so open
session required pam_namespace.so
session optional pam_keyinit.so force revoke
session include system-auth
session include postlogin
-session optional pam_ck_connector.so
I tried looking for changelogs in the docs but couldn’t find a relevant change that might have triggered this.
Are there changes to the Login that require me to setup the u2f in another file?