2013-11-27 19:50:06 +01:00
|
|
|
#
|
|
|
|
|
# spec file for package dbus-1
|
|
|
|
|
#
|
- update to 1.14.6:
* Fix an incorrect assertion that could be used to crash
dbus-daemon or other users of DBusServer prior to
authentication, if libdbus was compiled with assertions
enabled.
We recommend that production builds of dbus, for example in
OS distributions, should be compiled with checks but
without assertions.
* When connected to a dbus-broker, stop dbus-monitor from
incorrectly replying to Peer method calls that were sent to the
dbus-broker with a NULL destination
* Fix out-of-bounds varargs read in the dbus-daemon's config-
parser. This is not attacker-triggerable and appears to be
harmless in practice, but is technically undefined behaviour
and is detected as such by AddressSanitizer.
* Avoid a data race in multi-threaded use of DBusCounter
* Fix a crash with some glibc versions when non-auditable
SELinux events are logged (dbus!386, Jeremi Piotrowski)
* If dbus_message_demarshal() runs out of memory while
validating a message, report it as NoMemory rather than
InvalidArgs (dbus#420, Simon McVittie)
* Use C11 _Alignof if available, for better standards-
compliance
* Stop including an outdated copy of pkg.m4 in the git tree
* Documentation:
* Fix the test-apparmor-activation test after dbus#416
* Internal changes:
* Fix CI builds with recent git versions (dbus#447, Simon
McVittie)
- switch to using multibuild
OBS-URL: https://build.opensuse.org/package/show/Base:System/dbus-1?expand=0&rev=328
2023-02-09 18:09:45 +01:00
|
|
|
# Copyright (c) 2023 SUSE LLC
|
2013-11-27 19:50:06 +01:00
|
|
|
#
|
|
|
|
|
# All modifications and additions to the file contributed by third parties
|
|
|
|
|
# remain the property of their copyright owners, unless otherwise agreed
|
|
|
|
|
# upon. The license for this file, and modifications and additions to the
|
|
|
|
|
# file, is the same license as for the pristine package itself (unless the
|
|
|
|
|
# license for the pristine package is not an Open Source License, in which
|
|
|
|
|
# case the license is the MIT License). An "Open Source License" is a
|
|
|
|
|
# license that conforms to the Open Source Definition (Version 1.9)
|
|
|
|
|
# published by the Open Source Initiative.
|
|
|
|
|
|
2018-12-19 20:15:58 +01:00
|
|
|
# Please submit bugfixes or comments via https://bugs.opensuse.org/
|
2013-11-27 19:50:06 +01:00
|
|
|
#
|
|
|
|
|
|
|
|
|
|
|
2015-05-28 10:59:53 +02:00
|
|
|
%define with_systemd 1
|
2013-11-27 19:50:06 +01:00
|
|
|
%define _name dbus
|
|
|
|
|
%define _libname libdbus-1-3
|
2014-09-30 10:24:18 +02:00
|
|
|
%bcond_without selinux
|
|
|
|
|
Name: dbus-1
|
- update to 1.14.6:
* Fix an incorrect assertion that could be used to crash
dbus-daemon or other users of DBusServer prior to
authentication, if libdbus was compiled with assertions
enabled.
We recommend that production builds of dbus, for example in
OS distributions, should be compiled with checks but
without assertions.
* When connected to a dbus-broker, stop dbus-monitor from
incorrectly replying to Peer method calls that were sent to the
dbus-broker with a NULL destination
* Fix out-of-bounds varargs read in the dbus-daemon's config-
parser. This is not attacker-triggerable and appears to be
harmless in practice, but is technically undefined behaviour
and is detected as such by AddressSanitizer.
* Avoid a data race in multi-threaded use of DBusCounter
* Fix a crash with some glibc versions when non-auditable
SELinux events are logged (dbus!386, Jeremi Piotrowski)
* If dbus_message_demarshal() runs out of memory while
validating a message, report it as NoMemory rather than
InvalidArgs (dbus#420, Simon McVittie)
* Use C11 _Alignof if available, for better standards-
compliance
* Stop including an outdated copy of pkg.m4 in the git tree
* Documentation:
* Fix the test-apparmor-activation test after dbus#416
* Internal changes:
* Fix CI builds with recent git versions (dbus#447, Simon
McVittie)
- switch to using multibuild
OBS-URL: https://build.opensuse.org/package/show/Base:System/dbus-1?expand=0&rev=328
2023-02-09 18:09:45 +01:00
|
|
|
Version: 1.14.6
|
2016-12-06 11:00:23 +01:00
|
|
|
Release: 0
|
2014-09-30 10:24:18 +02:00
|
|
|
Summary: D-Bus Message Bus System
|
2021-04-08 00:36:23 +02:00
|
|
|
License: AFL-2.1 OR GPL-2.0-or-later
|
Accepting request 821367 from home:elimat:branches:Base:System
- Update to 1.12.20
* On Unix, avoid a use-after-free if two usernames have the same
numeric uid. In older versions this could lead to a crash (denial of
service) or other undefined behaviour, possibly including incorrect
authorization decisions if <policy group=...> is used.
Like Unix filesystems, D-Bus' model of identity cannot distinguish
between users of different names with the same numeric uid, so this
configuration is not advisable on systems where D-Bus will be used.
Thanks to Daniel Onaca.
(dbus#305, dbus!166; Simon McVittie)
- From 1.12.18
* CVE-2020-12049: If a message contains more file descriptors than can
be sent, close those that did get through before reporting error.
Previously, a local attacker could cause the system dbus-daemon (or
another system service with its own DBusServer) to run out of file
descriptors, by repeatedly connecting to the server and sending fds that
would get leaked.
Thanks to Kevin Backhouse of GitHub Security Lab.
(dbus#294, GHSL-2020-057; Simon McVittie)
* Fix a crash when the dbus-daemon is terminated while one or more
monitors are active (dbus#291, dbus!140; Simon McVittie)
* The dbus-send(1) man page now documents --bus and --peer instead of
the old --address synonym for --peer, which has been deprecated since
the introduction of --bus and --peer in 1.7.6
(fd.o #48816, dbus!115; Chris Morin)
* Fix a wrong environment variable name in dbus-daemon(1)
(dbus#275, dbus!122; Mubin, Philip Withnall)
* Fix formatting of dbus_message_append_args example
(dbus!126, Felipe Franciosi)
* Avoid a test failure on Linux when built in a container as uid 0, but
without the necessary privileges to increase resource limits
(dbus!58, Debian #908092; Simon McVittie)
* When building with CMake, cope with libX11 in a non-standard location
(dbus!129, Tuomo Rinne)
- Run spec-cleaner
OBS-URL: https://build.opensuse.org/request/show/821367
OBS-URL: https://build.opensuse.org/package/show/Base:System/dbus-1?expand=0&rev=293
2020-07-17 02:09:42 +02:00
|
|
|
URL: https://dbus.freedesktop.org/
|
2022-03-08 19:40:09 +01:00
|
|
|
Source0: https://dbus.freedesktop.org/releases/dbus/%{_name}-%{version}.tar.xz
|
|
|
|
|
Source1: https://dbus.freedesktop.org/releases/dbus/%{_name}-%{version}.tar.xz.asc
|
Accepting request 754216 from home:simotek:branches:Base:System
- Verify signatures
* dbus-1.keyring - Key for Simon McVittie (smcv) from the Debian
developer keyring.
- Drop dbus_at_console.ck not needed
- Clean up sources
* Source2 dbus-1.desktop now Source4
* baselib.conf now source 3
- Update to 1.12.16
* CVE-2019-12749: Do not attempt to carry out DBUS_COOKIE_SHA1
authentication for identities that differ from the user running the
DBusServer. Previously, a local attacker could manipulate symbolic
links in their own home directory to bypass authentication and connect
to a DBusServer with elevated privileges. The standard system and
session dbus-daemons in their default configuration were immune to this
attack because they did not allow DBUS_COOKIE_SHA1, but third-party
users of DBusServer such as Upstart could be vulnerable.
Thanks to Joe Vennix of Apple Information Security.
(bsc#1137832, dbus#269, Simon McVittie)
- From 1.12.14
* Raise soft fd limit to match hard limit, even if unprivileged.
This makes session buses with many clients, or with clients that make
heavy use of fd-passing, less likely to suffer from fd exhaustion.
(dbus!103, Simon McVittie)
* If a privileged dbus-daemon has a hard fd limit greater than 64K, don't
reduce it to 64K, ensuring that we can put back the original fd limits
when carrying out traditional (non-systemd) activation. This fixes a
regression with systemd >= 240 in which system services inherited
dbus-daemon's hard and soft limit of 64K fds, instead of the intended
soft limit of 1K and hard limit of 512K or 1M.
(dbus!103, Debian#928877; Simon McVittie)
* Fix build failures caused by an AX_CODE_COVERAGE API change in newer
autoconf-archive versions (dbus#249, dbus!88; Simon McVittie)
* Fix build failures with newer autoconf-archive versions that include
AX_-prefixed shell variable names (dbus#249, dbus!86; Simon McVittie)
* Parse section/group names in .service files according to the syntax
from the Desktop Entry Specification, rejecting control characters
and non-ASCII in section/group names (dbus#208, David King)
* Fix various -Wlogical-op issues that cause build failure with newer
gcc versions (dbus#225, dbus!109; David King)
* Don't assume we can set permissions on a directory, for the benefit of
MSYS and Cygwin builds (dbus#216, dbus!110; Simon McVittie)
* Don't overwrite PKG_CONFIG_PATH and related environment variables when
the pkg-config-based version of DBus1Config is used in a CMake project
(dbus#267, dbus!96; Clemens Lang)
- Drop now upstream Patches
* dbus-no-ax-check.patch
* dbus-new-autoconf-archive.patch
- Fix two inconsistencies with _libexecdir, sysusers.d and
tmpfiles.d are always in %{_prefix}/lib/.
- Drop update-desktop-files BuildRequires, once added for
mimetypes.prov which is no longer part of update-desktop-files,
and dbus-1.desktop does not even handles a single mimetype.
- Replace DISABLE_RESTART_ON_UPDATE with
%service_del_postun_without_restart
- Remove version specific code to block all updates on restart as
hopefully no tumbleweed versions still have code causing those
issues (was only present for a few snapshots)
- Remove the Leap42 conditionals that cause file conflict with
filesystem package
- Drop use of $FIRST_ARG in .spec
The use of $FIRST_ARG was probably required because of the
%service_* rpm macros were playing tricks with the shell positional
parameters. This is bad practice and error prones so let's assume
that no macros should do that anymore and hence it's safe to assume
that positional parameters remains unchanged after any rpm macro
call.
OBS-URL: https://build.opensuse.org/request/show/754216
OBS-URL: https://build.opensuse.org/package/show/Base:System/dbus-1?expand=0&rev=287
2019-12-06 05:01:33 +01:00
|
|
|
Source2: dbus-1.keyring
|
|
|
|
|
Source3: baselibs.conf
|
|
|
|
|
Source4: dbus-1.desktop
|
2020-01-20 15:47:46 +01:00
|
|
|
Source5: messagebus.conf
|
2022-03-08 19:40:09 +01:00
|
|
|
# PATCH-FEATURE-OPENSUSE feature-suse-log-deny.patch
|
2017-06-19 13:30:43 +02:00
|
|
|
Patch0: feature-suse-log-deny.patch
|
2013-11-27 19:50:06 +01:00
|
|
|
# PATCH-FIX-OPENSUSE coolo@suse.de -- force a feature configure won't accept without x11 in buildrequires
|
2017-06-19 13:30:43 +02:00
|
|
|
Patch1: feature-suse-do-autolaunch.patch
|
2022-03-08 19:40:09 +01:00
|
|
|
# PATCH-FEATURE-OPENSUSE sflees@suse.de, users shouldn't be allowed to start / stop the dbus service.
|
2017-06-19 13:30:43 +02:00
|
|
|
Patch2: feature-suse-refuse-manual-start-stop.patch
|
2022-03-08 19:40:09 +01:00
|
|
|
BuildRequires: alts
|
2016-12-06 11:00:23 +01:00
|
|
|
BuildRequires: audit-devel
|
2021-04-08 00:36:23 +02:00
|
|
|
BuildRequires: cmake
|
2014-09-30 10:24:18 +02:00
|
|
|
BuildRequires: libcap-ng-devel
|
2017-11-17 06:00:45 +01:00
|
|
|
BuildRequires: libexpat-devel >= 2.1.0
|
2016-12-08 16:23:47 +01:00
|
|
|
BuildRequires: permissions
|
2019-05-03 17:57:18 +02:00
|
|
|
BuildRequires: pkgconfig
|
2020-01-20 15:47:46 +01:00
|
|
|
BuildRequires: sysuser-tools
|
2016-12-06 11:00:23 +01:00
|
|
|
BuildRequires: xmlto
|
2016-12-09 12:02:34 +01:00
|
|
|
BuildRequires: pkgconfig(libsystemd) >= 209
|
2022-03-14 11:47:02 +01:00
|
|
|
Requires: alts
|
2016-12-06 11:00:23 +01:00
|
|
|
Requires(post): %{_libname} = %{version}
|
2020-08-22 05:47:45 +02:00
|
|
|
Requires(post): diffutils
|
2016-12-08 16:07:51 +01:00
|
|
|
Requires(pre): permissions
|
2022-06-08 14:36:41 +02:00
|
|
|
Provides: dbus-launch = %{version}
|
Accepting request 821367 from home:elimat:branches:Base:System
- Update to 1.12.20
* On Unix, avoid a use-after-free if two usernames have the same
numeric uid. In older versions this could lead to a crash (denial of
service) or other undefined behaviour, possibly including incorrect
authorization decisions if <policy group=...> is used.
Like Unix filesystems, D-Bus' model of identity cannot distinguish
between users of different names with the same numeric uid, so this
configuration is not advisable on systems where D-Bus will be used.
Thanks to Daniel Onaca.
(dbus#305, dbus!166; Simon McVittie)
- From 1.12.18
* CVE-2020-12049: If a message contains more file descriptors than can
be sent, close those that did get through before reporting error.
Previously, a local attacker could cause the system dbus-daemon (or
another system service with its own DBusServer) to run out of file
descriptors, by repeatedly connecting to the server and sending fds that
would get leaked.
Thanks to Kevin Backhouse of GitHub Security Lab.
(dbus#294, GHSL-2020-057; Simon McVittie)
* Fix a crash when the dbus-daemon is terminated while one or more
monitors are active (dbus#291, dbus!140; Simon McVittie)
* The dbus-send(1) man page now documents --bus and --peer instead of
the old --address synonym for --peer, which has been deprecated since
the introduction of --bus and --peer in 1.7.6
(fd.o #48816, dbus!115; Chris Morin)
* Fix a wrong environment variable name in dbus-daemon(1)
(dbus#275, dbus!122; Mubin, Philip Withnall)
* Fix formatting of dbus_message_append_args example
(dbus!126, Felipe Franciosi)
* Avoid a test failure on Linux when built in a container as uid 0, but
without the necessary privileges to increase resource limits
(dbus!58, Debian #908092; Simon McVittie)
* When building with CMake, cope with libX11 in a non-standard location
(dbus!129, Tuomo Rinne)
- Run spec-cleaner
OBS-URL: https://build.opensuse.org/request/show/821367
OBS-URL: https://build.opensuse.org/package/show/Base:System/dbus-1?expand=0&rev=293
2020-07-17 02:09:42 +02:00
|
|
|
%sysusers_requires
|
2013-11-27 19:50:06 +01:00
|
|
|
%if %{with selinux}
|
|
|
|
|
BuildRequires: libselinux-devel
|
|
|
|
|
%endif
|
2022-06-09 11:57:20 +02:00
|
|
|
Requires: dbus-1-common >= %{version}
|
2022-06-08 14:33:33 +02:00
|
|
|
# Later this should move to Recommends
|
2022-06-09 11:57:20 +02:00
|
|
|
Requires: dbus-1-tools >= %{version}
|
2022-06-08 14:33:33 +02:00
|
|
|
# Later on change this to just dbus-broker
|
2022-06-09 11:57:20 +02:00
|
|
|
Requires: dbus-service >= %{version}
|
|
|
|
|
Recommends: dbus-1-daemon >= %{version}
|
2013-11-27 19:50:06 +01:00
|
|
|
|
|
|
|
|
%package -n %{_libname}
|
|
|
|
|
Summary: Library package for D-Bus
|
2022-06-09 11:57:20 +02:00
|
|
|
Requires: dbus-1-common >= %{version}
|
2022-06-08 14:33:33 +02:00
|
|
|
|
|
|
|
|
%package common
|
|
|
|
|
Summary: D-BUS message bus configuration
|
|
|
|
|
BuildArch: noarch
|
|
|
|
|
|
|
|
|
|
%package daemon
|
|
|
|
|
Summary: D-Bus message bus daemon
|
2022-06-08 14:36:41 +02:00
|
|
|
Provides: dbus-1:%{_bindir}/dbus-daemon
|
|
|
|
|
Provides: dbus-service = %{version}
|
2013-11-27 19:50:06 +01:00
|
|
|
|
2016-12-06 11:00:23 +01:00
|
|
|
%package devel
|
2013-11-27 19:50:06 +01:00
|
|
|
Summary: Developer package for D-Bus
|
|
|
|
|
Requires: %{_libname} = %{version}
|
2016-12-06 11:00:23 +01:00
|
|
|
Requires: dbus-1 = %{version}
|
2013-11-27 19:50:06 +01:00
|
|
|
Requires: glibc-devel
|
|
|
|
|
|
2022-06-08 14:33:33 +02:00
|
|
|
%package tools
|
|
|
|
|
Summary: Tools that go along with dbus
|
2022-06-08 14:36:41 +02:00
|
|
|
Provides: dbus-1:%{_bindir}/dbus-monitor
|
2022-06-08 14:33:33 +02:00
|
|
|
|
2013-11-27 19:50:06 +01:00
|
|
|
%description
|
|
|
|
|
D-Bus is a message bus system, a simple way for applications to talk to
|
|
|
|
|
one another. D-Bus supplies both a system daemon and a
|
|
|
|
|
per-user-login-session daemon. Also, the message bus is built on top of
|
|
|
|
|
a general one-to-one message passing framework, which can be used by
|
|
|
|
|
any two apps to communicate directly (without going through the message
|
|
|
|
|
bus daemon).
|
|
|
|
|
|
|
|
|
|
%description -n %{_libname}
|
|
|
|
|
D-Bus is a message bus system, a simple way for applications to talk to
|
|
|
|
|
one another. D-Bus supplies both a system daemon and a
|
|
|
|
|
per-user-login-session daemon. Also, the message bus is built on top of
|
|
|
|
|
a general one-to-one message passing framework, which can be used by
|
|
|
|
|
any two apps to communicate directly (without going through the message
|
|
|
|
|
bus daemon).
|
|
|
|
|
|
2022-06-08 14:33:33 +02:00
|
|
|
%description common
|
|
|
|
|
D-Bus is a message bus system, The dbus-common package provides the configuration and setup files for D-Bus
|
|
|
|
|
implementations to provide a System and User Message Bus.
|
|
|
|
|
|
|
|
|
|
%description daemon
|
|
|
|
|
D-Bus is a message bus system, This package contains the original
|
|
|
|
|
dbus-daemon to make it easier to switch to dbus-broker
|
|
|
|
|
|
2016-12-06 11:00:23 +01:00
|
|
|
%description devel
|
2013-11-27 19:50:06 +01:00
|
|
|
D-Bus is a message bus system, a simple way for applications to talk to
|
|
|
|
|
one another. D-Bus supplies both a system daemon and a
|
|
|
|
|
per-user-login-session daemon. Also, the message bus is built on top of
|
|
|
|
|
a general one-to-one message passing framework, which can be used by
|
|
|
|
|
any two apps to communicate directly (without going through the message
|
|
|
|
|
bus daemon).
|
|
|
|
|
|
2022-06-08 14:33:33 +02:00
|
|
|
%description tools
|
|
|
|
|
D-Bus is a message bus system, these are some of the tools that go along
|
|
|
|
|
with it.
|
|
|
|
|
|
2013-11-27 19:50:06 +01:00
|
|
|
%prep
|
2014-09-30 10:24:18 +02:00
|
|
|
%setup -q -n %{_name}-%{version}
|
2017-06-19 13:30:43 +02:00
|
|
|
%autopatch -p1
|
2013-11-27 19:50:06 +01:00
|
|
|
|
|
|
|
|
%build
|
2014-07-21 13:52:56 +02:00
|
|
|
echo 'HTML_TIMESTAMP=NO' >> Doxyfile.in
|
2013-11-27 19:50:06 +01:00
|
|
|
# We use -fpie/-pie for the whole build; this is the recommended way to harden
|
|
|
|
|
# the build upstream, see discussion in fdo#46570
|
2014-09-30 10:24:18 +02:00
|
|
|
export CFLAGS="%{optflags} -fno-strict-aliasing -fPIC -fpie"
|
2013-11-27 19:50:06 +01:00
|
|
|
export LDFLAGS="-pie"
|
2014-09-30 10:24:18 +02:00
|
|
|
export CXXFLAGS="%{optflags} -fno-strict-aliasing"
|
2013-11-27 19:50:06 +01:00
|
|
|
export V=1
|
|
|
|
|
%configure \
|
2016-12-06 11:00:23 +01:00
|
|
|
--disable-static \
|
2022-10-13 09:30:23 +02:00
|
|
|
--disable-asserts \
|
2022-03-14 11:47:02 +01:00
|
|
|
--runstatedir=%{_rundir} \
|
2017-11-23 11:15:57 +01:00
|
|
|
--libexecdir=%{_libexecdir}/dbus-1 \
|
2016-12-06 11:00:23 +01:00
|
|
|
--enable-inotify \
|
2020-01-30 11:30:51 +01:00
|
|
|
--disable-doxygen-docs \
|
2013-11-27 19:50:06 +01:00
|
|
|
%if %{with selinux}
|
2016-12-06 11:00:23 +01:00
|
|
|
--enable-selinux \
|
2013-11-27 19:50:06 +01:00
|
|
|
%endif
|
2016-12-06 11:00:23 +01:00
|
|
|
--enable-systemd \
|
2017-01-09 15:33:05 +01:00
|
|
|
--enable-user-session \
|
2016-12-06 11:00:23 +01:00
|
|
|
--enable-libaudit \
|
|
|
|
|
--with-console-auth-dir=/run/dbus/at_console/ \
|
|
|
|
|
--with-system-pid-file=/run/dbus/pid \
|
|
|
|
|
--with-system-socket=/run/dbus/system_bus_socket \
|
|
|
|
|
--with-systemdsystemunitdir=%{_unitdir} \
|
2017-01-09 15:35:49 +01:00
|
|
|
--with-systemduserunitdir=%{_userunitdir} \
|
2017-01-09 15:33:05 +01:00
|
|
|
--without-x
|
Accepting request 821367 from home:elimat:branches:Base:System
- Update to 1.12.20
* On Unix, avoid a use-after-free if two usernames have the same
numeric uid. In older versions this could lead to a crash (denial of
service) or other undefined behaviour, possibly including incorrect
authorization decisions if <policy group=...> is used.
Like Unix filesystems, D-Bus' model of identity cannot distinguish
between users of different names with the same numeric uid, so this
configuration is not advisable on systems where D-Bus will be used.
Thanks to Daniel Onaca.
(dbus#305, dbus!166; Simon McVittie)
- From 1.12.18
* CVE-2020-12049: If a message contains more file descriptors than can
be sent, close those that did get through before reporting error.
Previously, a local attacker could cause the system dbus-daemon (or
another system service with its own DBusServer) to run out of file
descriptors, by repeatedly connecting to the server and sending fds that
would get leaked.
Thanks to Kevin Backhouse of GitHub Security Lab.
(dbus#294, GHSL-2020-057; Simon McVittie)
* Fix a crash when the dbus-daemon is terminated while one or more
monitors are active (dbus#291, dbus!140; Simon McVittie)
* The dbus-send(1) man page now documents --bus and --peer instead of
the old --address synonym for --peer, which has been deprecated since
the introduction of --bus and --peer in 1.7.6
(fd.o #48816, dbus!115; Chris Morin)
* Fix a wrong environment variable name in dbus-daemon(1)
(dbus#275, dbus!122; Mubin, Philip Withnall)
* Fix formatting of dbus_message_append_args example
(dbus!126, Felipe Franciosi)
* Avoid a test failure on Linux when built in a container as uid 0, but
without the necessary privileges to increase resource limits
(dbus!58, Debian #908092; Simon McVittie)
* When building with CMake, cope with libX11 in a non-standard location
(dbus!129, Tuomo Rinne)
- Run spec-cleaner
OBS-URL: https://build.opensuse.org/request/show/821367
OBS-URL: https://build.opensuse.org/package/show/Base:System/dbus-1?expand=0&rev=293
2020-07-17 02:09:42 +02:00
|
|
|
%make_build
|
2020-01-20 15:47:46 +01:00
|
|
|
# The original dbus sysusers config does not create our account,
|
|
|
|
|
# overwrite it with our user definition
|
|
|
|
|
cp %{SOURCE5} bus/sysusers.d/dbus.conf
|
2021-11-24 09:38:49 +01:00
|
|
|
%sysusers_generate_pre %{SOURCE5} messagebus dbus.conf
|
2014-09-30 10:24:18 +02:00
|
|
|
|
2017-11-17 06:00:45 +01:00
|
|
|
%check
|
Accepting request 821367 from home:elimat:branches:Base:System
- Update to 1.12.20
* On Unix, avoid a use-after-free if two usernames have the same
numeric uid. In older versions this could lead to a crash (denial of
service) or other undefined behaviour, possibly including incorrect
authorization decisions if <policy group=...> is used.
Like Unix filesystems, D-Bus' model of identity cannot distinguish
between users of different names with the same numeric uid, so this
configuration is not advisable on systems where D-Bus will be used.
Thanks to Daniel Onaca.
(dbus#305, dbus!166; Simon McVittie)
- From 1.12.18
* CVE-2020-12049: If a message contains more file descriptors than can
be sent, close those that did get through before reporting error.
Previously, a local attacker could cause the system dbus-daemon (or
another system service with its own DBusServer) to run out of file
descriptors, by repeatedly connecting to the server and sending fds that
would get leaked.
Thanks to Kevin Backhouse of GitHub Security Lab.
(dbus#294, GHSL-2020-057; Simon McVittie)
* Fix a crash when the dbus-daemon is terminated while one or more
monitors are active (dbus#291, dbus!140; Simon McVittie)
* The dbus-send(1) man page now documents --bus and --peer instead of
the old --address synonym for --peer, which has been deprecated since
the introduction of --bus and --peer in 1.7.6
(fd.o #48816, dbus!115; Chris Morin)
* Fix a wrong environment variable name in dbus-daemon(1)
(dbus#275, dbus!122; Mubin, Philip Withnall)
* Fix formatting of dbus_message_append_args example
(dbus!126, Felipe Franciosi)
* Avoid a test failure on Linux when built in a container as uid 0, but
without the necessary privileges to increase resource limits
(dbus!58, Debian #908092; Simon McVittie)
* When building with CMake, cope with libX11 in a non-standard location
(dbus!129, Tuomo Rinne)
- Run spec-cleaner
OBS-URL: https://build.opensuse.org/request/show/821367
OBS-URL: https://build.opensuse.org/package/show/Base:System/dbus-1?expand=0&rev=293
2020-07-17 02:09:42 +02:00
|
|
|
%make_build check
|
2017-11-17 06:00:45 +01:00
|
|
|
|
2013-11-27 19:50:06 +01:00
|
|
|
%install
|
2017-01-09 17:16:27 +01:00
|
|
|
%make_install
|
2013-11-27 19:50:06 +01:00
|
|
|
|
2016-11-22 09:31:31 +01:00
|
|
|
# dbus-launch, too
|
2017-06-19 13:30:43 +02:00
|
|
|
mv -f %{buildroot}/%{_bindir}/dbus-launch %{buildroot}%{_bindir}/dbus-launch.nox11
|
2016-12-06 11:00:23 +01:00
|
|
|
mkdir -p %{buildroot}%{_sbindir}
|
|
|
|
|
ln -sf %{_sbindir}/service %{buildroot}/%{_sbindir}/rcdbus
|
|
|
|
|
install -d %{buildroot}/run/dbus
|
|
|
|
|
mkdir -p %{buildroot}/%{_libdir}/pkgconfig
|
2013-11-27 19:50:06 +01:00
|
|
|
|
2014-09-30 10:24:18 +02:00
|
|
|
for i in %{_sysconfdir}/dbus-1/session.d %{_sysconfdir}/dbus-1/system.d \
|
2019-01-15 17:31:31 +01:00
|
|
|
%{_datadir}/dbus-1/interfaces %{_datadir}/dbus-1/services \
|
|
|
|
|
%{_datadir}/dbus-1/system.d %{_datadir}/dbus-1/system-services; do
|
2013-11-27 19:50:06 +01:00
|
|
|
mkdir -p %{buildroot}$i
|
|
|
|
|
done
|
|
|
|
|
|
2016-12-06 11:00:23 +01:00
|
|
|
mkdir -p %{buildroot}%{_localstatedir}/lib/dbus
|
|
|
|
|
|
2021-09-16 11:31:14 +02:00
|
|
|
# create entries for libalternatives
|
|
|
|
|
ln -sf %{_bindir}/alts %{buildroot}%{_bindir}/dbus-launch
|
|
|
|
|
mkdir -p %{buildroot}%{_datadir}/libalternatives/dbus-launch
|
|
|
|
|
cat > %{buildroot}%{_datadir}/libalternatives/dbus-launch/10.conf <<EOF
|
|
|
|
|
binary=%{_bindir}/dbus-launch.nox11
|
|
|
|
|
group=dbus-launch
|
|
|
|
|
EOF
|
2016-11-24 09:29:21 +01:00
|
|
|
|
2016-12-06 11:00:23 +01:00
|
|
|
find %{buildroot} -type f -name "*.la" -delete -print
|
|
|
|
|
|
2020-01-30 11:30:51 +01:00
|
|
|
rm -Rf %{buildroot}%{_datadir}/doc/dbus
|
|
|
|
|
|
2016-12-06 11:00:23 +01:00
|
|
|
%verifyscript -n dbus-1
|
2017-11-23 11:04:56 +01:00
|
|
|
%verify_permissions -e %{_libexecdir}/dbus-1/dbus-daemon-launch-helper
|
2016-12-06 11:00:23 +01:00
|
|
|
|
2013-11-27 19:50:06 +01:00
|
|
|
%post -n %{_libname} -p /sbin/ldconfig
|
|
|
|
|
%postun -n %{_libname} -p /sbin/ldconfig
|
2021-04-08 00:36:23 +02:00
|
|
|
|
2020-01-20 15:47:46 +01:00
|
|
|
%pre -f messagebus.pre
|
2016-12-08 11:10:38 +01:00
|
|
|
%service_add_pre dbus.service dbus.socket
|
2021-09-16 11:31:14 +02:00
|
|
|
# removing old update-alternatives entries
|
2021-09-18 03:10:28 +02:00
|
|
|
if [ "$1" -gt 0 ] && [ -f %{_sbindir}/update-alternatives ] ; then
|
|
|
|
|
%{_sbindir}/update-alternatives --remove dbus-launch %{_bindir}/dbus-launch.nox11
|
2021-11-24 09:38:49 +01:00
|
|
|
fi
|
2016-12-06 11:00:23 +01:00
|
|
|
|
|
|
|
|
%post
|
|
|
|
|
if [ -e %{_localstatedir}/lib/dbus/machine-id -a -e %{_sysconfdir}/machine-id ]; then
|
|
|
|
|
cmp -s %{_localstatedir}/lib/dbus/machine-id %{_sysconfdir}/machine-id > /dev/null
|
|
|
|
|
if [ $? ]; then
|
|
|
|
|
rm -f %{_localstatedir}/lib/dbus/machine-id
|
|
|
|
|
fi
|
|
|
|
|
fi
|
2017-09-16 02:45:31 +02:00
|
|
|
if [ ! -L %{_localstatedir}/lib/dbus/machine-id ]; then
|
|
|
|
|
mkdir -p %{_localstatedir}/lib/dbus/
|
|
|
|
|
ln -s %{_sysconfdir}/machine-id %{_localstatedir}/lib/dbus/machine-id
|
2016-12-06 11:00:23 +01:00
|
|
|
fi
|
2017-09-16 02:45:31 +02:00
|
|
|
|
2016-12-06 11:00:23 +01:00
|
|
|
/sbin/ldconfig
|
2017-11-23 11:04:56 +01:00
|
|
|
%set_permissions %{_libexecdir}/dbus-1/dbus-daemon-launch-helper
|
2016-12-08 11:10:38 +01:00
|
|
|
%service_add_post dbus.service dbus.socket
|
2019-11-21 04:04:57 +01:00
|
|
|
%tmpfiles_create %{_prefix}/lib/tmpfiles.d/dbus.conf
|
2016-11-22 09:31:31 +01:00
|
|
|
|
2016-12-06 11:00:23 +01:00
|
|
|
%preun
|
2016-12-08 11:10:38 +01:00
|
|
|
%service_del_preun dbus.service dbus.socket
|
2016-12-06 11:00:23 +01:00
|
|
|
|
|
|
|
|
%postun
|
2019-06-03 13:19:27 +02:00
|
|
|
%service_del_postun_without_restart dbus.service dbus.socket
|
2016-12-06 11:00:23 +01:00
|
|
|
|
|
|
|
|
%files
|
|
|
|
|
%dir %{_localstatedir}/lib/dbus
|
2017-12-11 13:11:51 +01:00
|
|
|
%dir %{_libexecdir}/dbus-1/
|
2019-01-15 09:12:38 +01:00
|
|
|
%license COPYING
|
Accepting request 670264 from home:scarabeus_iv:branches:Base:System
- Update to 1.12.12:
* Reference the freedesktop.org Code of Conduct (Simon McVittie)
* Stop the dbus-daemon leaking memory (an error message) if delivering
the message that triggered auto-activation is forbidden. This is
technically a denial of service because the dbus-daemon will
run out of memory eventually, but it's a very slow and noisy one,
because all the rejected messages are also very likely to have
been logged to the system log, and its scope is typically limited by
the finite number of activatable services available.
(dbus#234, Simon McVittie)
* Remove __attribute__((__malloc__)) attribute on dbus_realloc(),
which does not meet the criteria for that attribute in gcc 4.7+,
potentially leading to miscompilation (fd.o #107741, Simon McVittie)
* Fix some small O(1) memory leaks (fd.o #107320, Simon McVittie)
* Fix printf formats for pointer-sized integers on 64-bit Windows
(fd.o #105662, Ralf Habacker)
* Always use select()-based poll() emulation on Darwin-based OSs
(macOS, etc.) and on Interix, similar to what libcurl does
(dbus#232, dbus!19; Simon McVittie)
* Extend a test timeout to avoid spurious failures in CI
(dbus!26, Simon McVittie)
- Add patch to build with new autoconf-archive, there is now
bash variable AX_BLA that gets detected and autoreconf aborts;
thus rather just disable the pointless check:
* dbus-no-ax-check.patch
- Add patch to fix codecoverage m4 macro changes in autoconf-archive:
* dbus-new-autoconf-archive.patch
- Update to 1.12.12:
OBS-URL: https://build.opensuse.org/request/show/670264
OBS-URL: https://build.opensuse.org/package/show/Base:System/dbus-1?expand=0&rev=277
2019-01-31 10:20:00 +01:00
|
|
|
%doc AUTHORS NEWS README
|
2022-06-08 14:33:33 +02:00
|
|
|
|
2016-12-06 11:00:23 +01:00
|
|
|
# See doc/system-activation.txt in source tarball for the rationale
|
|
|
|
|
# behind these permissions
|
2017-11-23 11:04:56 +01:00
|
|
|
%attr(4750,root,messagebus) %verify(not mode) %{_libexecdir}/dbus-1/dbus-daemon-launch-helper
|
2016-12-06 11:00:23 +01:00
|
|
|
%ghost /run/dbus
|
|
|
|
|
%ghost %{_localstatedir}/lib/dbus/machine-id
|
|
|
|
|
%{_unitdir}/dbus.service
|
|
|
|
|
%dir %{_unitdir}/multi-user.target.wants
|
|
|
|
|
%{_unitdir}/multi-user.target.wants/dbus.service
|
|
|
|
|
%dir %{_unitdir}/sockets.target.wants
|
|
|
|
|
%{_unitdir}/sockets.target.wants/dbus.socket
|
2017-01-09 15:35:49 +01:00
|
|
|
%{_userunitdir}/dbus.service
|
2021-09-16 11:31:14 +02:00
|
|
|
%dir %{_datadir}/libalternatives
|
|
|
|
|
%dir %{_datadir}/libalternatives/dbus-launch
|
|
|
|
|
%{_datadir}/libalternatives/dbus-launch/10.conf
|
2016-12-06 11:00:23 +01:00
|
|
|
%{_bindir}/dbus-launch.nox11
|
|
|
|
|
%{_bindir}/dbus-launch
|
2016-11-22 09:31:31 +01:00
|
|
|
|
2013-11-27 19:50:06 +01:00
|
|
|
%files -n %{_libname}
|
2017-07-15 02:46:53 +02:00
|
|
|
%{_libdir}/libdbus-1.so.*
|
2022-06-08 14:33:33 +02:00
|
|
|
|
|
|
|
|
%files common
|
|
|
|
|
%config(noreplace) %{_sysconfdir}/dbus-1/session.conf
|
|
|
|
|
%config(noreplace) %{_sysconfdir}/dbus-1/system.conf
|
2013-11-27 19:50:06 +01:00
|
|
|
%dir %{_sysconfdir}/dbus-1
|
|
|
|
|
%dir %{_sysconfdir}/dbus-1/session.d
|
|
|
|
|
%dir %{_sysconfdir}/dbus-1/system.d
|
|
|
|
|
%dir %{_datadir}/dbus-1
|
|
|
|
|
%dir %{_datadir}/dbus-1/interfaces
|
|
|
|
|
%dir %{_datadir}/dbus-1/services
|
2019-01-15 17:31:31 +01:00
|
|
|
%dir %{_datadir}/dbus-1/system.d
|
2013-11-27 19:50:06 +01:00
|
|
|
%dir %{_datadir}/dbus-1/system-services
|
2022-06-08 14:33:33 +02:00
|
|
|
%dir %{_userunitdir}/sockets.target.wants
|
|
|
|
|
%{_userunitdir}/sockets.target.wants/dbus.socket
|
|
|
|
|
%{_prefix}/lib/sysusers.d/dbus.conf
|
|
|
|
|
%{_prefix}/lib/tmpfiles.d/dbus.conf
|
|
|
|
|
%{_datadir}/dbus-1/session.conf
|
|
|
|
|
%{_datadir}/dbus-1/system.conf
|
|
|
|
|
%{_unitdir}/dbus.socket
|
|
|
|
|
%{_userunitdir}/dbus.socket
|
|
|
|
|
|
|
|
|
|
%files daemon
|
|
|
|
|
%{_bindir}/dbus-cleanup-sockets
|
|
|
|
|
%{_bindir}/dbus-daemon
|
|
|
|
|
%{_bindir}/dbus-run-session
|
|
|
|
|
%{_bindir}/dbus-test-tool
|
|
|
|
|
%{_mandir}/man1/dbus-cleanup-sockets.1%{?ext_man}
|
|
|
|
|
%{_mandir}/man1/dbus-daemon.1%{?ext_man}
|
|
|
|
|
%{_mandir}/man1/dbus-run-session.1%{?ext_man}
|
|
|
|
|
%{_mandir}/man1/dbus-test-tool.1%{?ext_man}
|
|
|
|
|
%{_mandir}/man1/dbus-launch.1%{?ext_man}
|
|
|
|
|
%{_sbindir}/rcdbus
|
2013-11-27 19:50:06 +01:00
|
|
|
|
2016-12-06 11:00:23 +01:00
|
|
|
%files devel
|
2013-11-27 19:50:06 +01:00
|
|
|
%{_includedir}/*
|
|
|
|
|
%{_libdir}/libdbus-1.so
|
|
|
|
|
%dir %{_libdir}/dbus-1.0
|
|
|
|
|
%{_libdir}/dbus-1.0/include
|
|
|
|
|
%{_libdir}/pkgconfig/dbus-1.pc
|
2021-04-08 00:36:23 +02:00
|
|
|
%{_libdir}/cmake/DBus1
|
2017-11-17 06:00:45 +01:00
|
|
|
%{_datadir}/xml/dbus-1
|
2013-11-27 19:50:06 +01:00
|
|
|
|
2022-06-08 14:33:33 +02:00
|
|
|
%files tools
|
|
|
|
|
%{_bindir}/dbus-monitor
|
|
|
|
|
%{_bindir}/dbus-send
|
|
|
|
|
%{_bindir}/dbus-update-activation-environment
|
|
|
|
|
%{_bindir}/dbus-uuidgen
|
|
|
|
|
%{_mandir}/man1/dbus-monitor.1%{?ext_man}
|
|
|
|
|
%{_mandir}/man1/dbus-send.1%{?ext_man}
|
|
|
|
|
%{_mandir}/man1/dbus-update-activation-environment.1%{?ext_man}
|
|
|
|
|
%{_mandir}/man1/dbus-uuidgen.1%{?ext_man}
|
|
|
|
|
|
2013-11-27 19:50:06 +01:00
|
|
|
%changelog
|
