diff --git a/0001-Defuse-root-block.patch b/0001-Defuse-root-block.patch index d194cf2..51c2455 100644 --- a/0001-Defuse-root-block.patch +++ b/0001-Defuse-root-block.patch @@ -1,6 +1,6 @@ -From 435ed5853b9451ab8fdfff722545c57a8f154625 Mon Sep 17 00:00:00 2001 -From: Fabian Vogt -Date: Sat, 18 Feb 2017 13:49:14 +0100 +From 52f948fe211fedc54c13c0baf067cd6d8e4cb0c3 Mon Sep 17 00:00:00 2001 +From: Luca Beltrame +Date: Sun, 3 Apr 2022 09:26:48 +0200 Subject: [PATCH] Defuse root block While the main point is correct as any application running in the same @@ -8,15 +8,15 @@ X session (not sandboxed) can use kate's capability to open a console, we allow (even encourage) running YaST on X11 as root. That way it's only an impact on usability. --- - kate/main.cpp | 3 +-- - kwrite/main.cpp | 3 +-- - 2 files changed, 2 insertions(+), 4 deletions(-) + apps/kate/main.cpp | 15 ++------------- + apps/kwrite/main.cpp | 17 +++-------------- + 2 files changed, 5 insertions(+), 27 deletions(-) -Index: kate-19.11.70git.20220102T020433~0a4347e06/kate/main.cpp +Index: kate-19.11.70git.20220404T014944~1f6e53f72/apps/kate/main.cpp =================================================================== ---- kate-19.11.70git.20220102T020433~0a4347e06.orig/kate/main.cpp 2022-01-02 09:28:49.643692601 +0100 -+++ kate-19.11.70git.20220102T020433~0a4347e06/kate/main.cpp 2022-01-02 09:29:48.503285030 +0100 -@@ -48,19 +48,8 @@ +--- kate-19.11.70git.20220404T014944~1f6e53f72.orig/apps/kate/main.cpp 2022-04-04 03:49:44.000000000 +0200 ++++ kate-19.11.70git.20220404T014944~1f6e53f72/apps/kate/main.cpp 2022-04-04 05:55:46.476883480 +0200 +@@ -49,19 +49,8 @@ #if !defined(Q_OS_WIN) && !defined(Q_OS_HAIKU) // Prohibit using sudo or kdesu (but allow using the root user directly) if (getuid() == 0) { @@ -34,7 +34,33 @@ Index: kate-19.11.70git.20220102T020433~0a4347e06/kate/main.cpp - return EXIT_FAILURE; - } + std::cout << "THIS IS POTENTIALLY INSECURE!\nTo edit files as root please use:" << std::endl; -+ std::cout << "SUDO_EDITOR=kwrite sudoedit " << std::endl; ++ std::cout << "SUDO_EDITOR=kate sudoedit " << std::endl; } #endif /** +Index: kate-19.11.70git.20220404T014944~1f6e53f72/apps/kwrite/main.cpp +=================================================================== +--- kate-19.11.70git.20220404T014944~1f6e53f72.orig/apps/kwrite/main.cpp 2022-04-04 03:49:44.000000000 +0200 ++++ kate-19.11.70git.20220404T014944~1f6e53f72/apps/kwrite/main.cpp 2022-04-04 05:57:17.276197192 +0200 +@@ -27,19 +27,8 @@ + #if !defined(Q_OS_WIN) && !defined(Q_OS_HAIKU) + // Prohibit using sudo or kdesu (but allow using the root user directly) + if (getuid() == 0) { +- if (!qEnvironmentVariableIsEmpty("SUDO_USER")) { +- std::cout << "Running KWrite with sudo can cause bugs and expose you to security vulnerabilities. " +- "Instead use KWrite normally and you will be prompted for elevated privileges when " +- "saving documents if needed." +- << std::endl; +- return EXIT_FAILURE; +- } else if (!qEnvironmentVariableIsEmpty("KDESU_USER")) { +- std::cout << "Running KWrite with kdesu can cause bugs and expose you to security vulnerabilities. " +- "Instead use KWrite normally and you will be prompted for elevated privileges when " +- "saving documents if needed." +- << std::endl; +- return EXIT_FAILURE; +- } ++ std::cout << "THIS IS POTENTIALLY INSECURE!\nTo edit files as root please use:" << std::endl; ++ std::cout << "SUDO_EDITOR=kwrite sudoedit " << std::endl; + } + #endif + diff --git a/kate-22.04.3.tar.xz b/kate-22.04.3.tar.xz deleted file mode 100644 index efb402b..0000000 --- a/kate-22.04.3.tar.xz +++ /dev/null @@ -1,3 +0,0 @@ -version https://git-lfs.github.com/spec/v1 -oid sha256:6e3e4f78c8c2b6a68ce8122dbcd1f1222ec18dd17aa1b4b155989a4659c8d436 -size 7584932 diff --git a/kate-22.04.3.tar.xz.sig b/kate-22.04.3.tar.xz.sig deleted file mode 100644 index d242925..0000000 --- a/kate-22.04.3.tar.xz.sig +++ /dev/null @@ -1,16 +0,0 @@ ------BEGIN PGP SIGNATURE----- - -iQIzBAABCgAdFiEE2BwMs463Je9mkcOFu0YzUNbvMe8FAmLDvdQACgkQu0YzUNbv -Me+REA//WQxgNk7nB1k1a8NE5tVmT4KAfcY8koEpXTPR3nVM3Wy6j72UT5DW1FB5 -e+JgIcUU+2AbJwSvqn13oeLNTupRctlEgbHKgK+PfJNJ+oB1+RMLcqes8R5jfdRd -MZCh9x5wzhvhv8V68rz1g5ed/GpS+oHpK8TQ98IqsOoQ4TCPA5ils4rEXOF0xmwc -+7gauNPdg+K+kJSpl/V0PcMt/lXr8DzsHH9U0cP4w2D1sp745doNbUhowaYg8B/J -2PUt8q3kv2mZQiECJtjtTmPxDGt9yjuCZQN4lEnw36IdqFBMpzPHRDcVttq+Eiup -8S9hU1Cd32+m/KvODvc5khCbnDHquUgMP5A9EfTdHchKVZ3KjRR2OzJf7EgX0xOM -jTYHV4QAiKkODI4gqlc62Ow7dPvN5yOa/9eCPpYo36gUv97BKT2MD71x2ZLO+Z1B -j1czupFKEwP/7MqUR+DrAbf3PJELM5iFJrTEMgr2nG/zd/I4S/8tsMIcxsa0I6Sw -DoJLdpHnVwwF7gWgXFA4nfqGB5wtKfDVjfmksDoyoFInghPzWN/SNvLeXdvHgsMz -PggHZSbvdWwqLnuDcmenZdyaH1YY1xV6xoYpjyNC3d09NUKPNuLd8U22xAZZ/L6t -P46JemTO9oxkjXZJo14lxBxDS7EAawqC4xoyGm/dp9P+8EUMvLw= -=Lbzg ------END PGP SIGNATURE----- diff --git a/kate-22.07.90.tar.xz b/kate-22.07.90.tar.xz new file mode 100644 index 0000000..3ddd2d5 --- /dev/null +++ b/kate-22.07.90.tar.xz @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:ae3c0fa2c1c2d85dbeef0f55ee57b86b573f658427dbf69fb17f56bca8aaa570 +size 7655928 diff --git a/kate-22.07.90.tar.xz.sig b/kate-22.07.90.tar.xz.sig new file mode 100644 index 0000000..e5384bf --- /dev/null +++ b/kate-22.07.90.tar.xz.sig @@ -0,0 +1,16 @@ +-----BEGIN PGP SIGNATURE----- + +iQIzBAABCgAdFiEE2BwMs463Je9mkcOFu0YzUNbvMe8FAmLsXpMACgkQu0YzUNbv +Me+IYQ//RrCndIsiTCoUfntyy/qZZNFsOzg2OaovmK+PwY/DL6awUxig2Dq2bUm1 +2L8L0gHFfnQUYalcIQ2v8+Xdix/5yBjAKNhTcNvMgEinqsui4hydPjot6l1xdqnN +7vMaPzsV2f67CgLz+A8MEDBO+qilBCjBDnXrvqTZk8EVQb0/fHcSdg7XKHRleJ6I +/1h8pm6vXB0nK/LtRrqC0CuTVEw+m8v0EssD1T4emP4jlhrHgKSCAaicruMUanck +xN6UBC7ucS8VFus9zNE+3tXc7nzuu+jxmggXGnUvyZWZ+AjASfoZx0fZTwigAa/Y +PTMDQjm4mrjvdzPY6O+NmyzUTrPjFklQJy2iR/wFtoZ7KG4ODgqPwO9wxOwHfVUR +2tB6+5mnp2vUhjDnyGUJXYZTlnWEuSLF6ARx+DQ81vfPsUUoE7VTCcIb/sAFqFxm +XtU4EoGSGTy2B28ayjrhUhHZID3X0+aIBkN2FWhSoM7Ilk5UpaaN/vkJB0YHB9NC +cnOg6/VR5ToZIzbUNHh8r3j23uR4ibhfkzgPUA05cf1jJPqum7mQAMR6VpK77oVy +uQ/GtJU714SdonfDR/ULEUzTLTGpPnAoyQPoqhuHD5xuu3IXyKe/SxfoWIPeI+mR +weh3LoAA+N1IrVhF+U0w5qCpOjyhzKEVGu95m5ZmuIaavqcCAR8= +=p5Ed +-----END PGP SIGNATURE----- diff --git a/kate.changes b/kate.changes index e033a50..4d77eca 100644 --- a/kate.changes +++ b/kate.changes @@ -1,3 +1,16 @@ +------------------------------------------------------------------- +Fri Aug 5 12:10:34 UTC 2022 - Christophe Giboudeaux + +- Update to 22.07.90 + * New feature release + +------------------------------------------------------------------- +Sat Jul 16 08:27:47 UTC 2022 - Christophe Giboudeaux + +- Update to 22.07.80 + * New feature release +- Rebase 0001-Defuse-root-block.patch + ------------------------------------------------------------------- Tue Jul 5 17:03:00 UTC 2022 - Christophe Giboudeaux diff --git a/kate.spec b/kate.spec index 614c91f..4a05c0e 100644 --- a/kate.spec +++ b/kate.spec @@ -21,15 +21,15 @@ %{!?_kapp_version: %define _kapp_version %(echo %{version}| awk -F. '{print $1"."$2}')} %bcond_without released Name: kate -Version: 22.04.3 +Version: 22.07.90 Release: 0 Summary: Advanced Text Editor License: GPL-3.0-or-later Group: Productivity/Text/Editors URL: https://kate-editor.org -Source: https://download.kde.org/stable/release-service/%{version}/src/%{name}-%{version}.tar.xz +Source: https://download.kde.org/unstable/release-service/%{version}/src/%{name}-%{version}.tar.xz %if %{with released} -Source1: https://download.kde.org/stable/release-service/%{version}/src/%{name}-%{version}.tar.xz.sig +Source1: https://download.kde.org/unstable/release-service/%{version}/src/%{name}-%{version}.tar.xz.sig Source2: applications.keyring %endif # PATCH-FIX-OPENSUSE @@ -133,6 +133,7 @@ plugins and data files for Kate and KWrite editors. %{_kf5_appstreamdir}/org.kde.kate.appdata.xml %{_kf5_bindir}/kate %{_kf5_iconsdir}/hicolor/*/apps/kate.* +%{_kf5_libdir}/libkateprivate.so.* %files -n kwrite %doc README*