Accepting request 989830 from home:msmeissn:branches:Base:System
- split out pkexec into seperate package to make system hardening easier (to avoid installing it jsc#PED-132 jsc#PED-148). OBS-URL: https://build.opensuse.org/request/show/989830 OBS-URL: https://build.opensuse.org/package/show/Base:System/polkit?expand=0&rev=170
This commit is contained in:
Git OBS Bridge
parent
5bfc2cd366
commit
6449f050cd
@ -1,3 +1,9 @@
|
||||
-------------------------------------------------------------------
|
||||
Mon Jul 18 09:38:28 UTC 2022 - Marcus Meissner <meissner@suse.com>
|
||||
|
||||
- split out pkexec into seperate package to make system hardening
|
||||
easier (to avoid installing it jsc#PED-132 jsc#PED-148).
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Tue Feb 22 10:48:15 UTC 2022 - Marcus Meissner <meissner@suse.com>
|
||||
|
||||
|
||||
22
polkit.spec
22
polkit.spec
@ -90,6 +90,14 @@ Requires: typelib-1_0-Polkit-1_0 = %{version}
|
||||
%description devel
|
||||
Development files for PolicyKit Authorization Framework.
|
||||
|
||||
%package -n pkexec
|
||||
Summary: pkexec component of polkit
|
||||
Group: System/Libraries
|
||||
Requires: %{name} = %{version}-%{release}
|
||||
|
||||
%description -n pkexec
|
||||
This package contains the pkexec setuid root binary part of polkit.
|
||||
|
||||
%package doc
|
||||
Summary: Development documentation for PolicyKit
|
||||
Group: Development/Libraries/C and C++
|
||||
@ -183,13 +191,17 @@ install -m0644 %{SOURCE3} %{buildroot}%{_sysusersdir}/
|
||||
%postun
|
||||
%service_del_postun polkit.service
|
||||
|
||||
%post
|
||||
%post -n pkexec
|
||||
%set_permissions %{_bindir}/pkexec
|
||||
|
||||
%post
|
||||
%set_permissions %{_libexecdir}/polkit-1/polkit-agent-helper-1
|
||||
%service_add_post polkit.service
|
||||
|
||||
%verifyscript
|
||||
%verifyscript -n pkexec
|
||||
%verify_permissions -e %{_bindir}/pkexec
|
||||
|
||||
%verifyscript
|
||||
%verify_permissions -e %{_libexecdir}/polkit-1/polkit-agent-helper-1
|
||||
|
||||
%post -n libpolkit-agent-1-0 -p /sbin/ldconfig
|
||||
@ -210,7 +222,6 @@ install -m0644 %{SOURCE3} %{buildroot}%{_sysusersdir}/
|
||||
%files -f polkit-1.lang
|
||||
%license COPYING
|
||||
|
||||
%{_mandir}/man1/pkexec.1%{?ext_man}
|
||||
%{_mandir}/man1/pkaction.1%{?ext_man}
|
||||
%{_mandir}/man1/pkcheck.1%{?ext_man}
|
||||
%{_mandir}/man1/pkttyagent.1%{?ext_man}
|
||||
@ -231,7 +242,6 @@ install -m0644 %{SOURCE3} %{buildroot}%{_sysusersdir}/
|
||||
%attr(0700,polkitd,root) %dir %{_sysconfdir}/polkit-1/rules.d
|
||||
%{_bindir}/pkaction
|
||||
%{_bindir}/pkcheck
|
||||
%verify(not mode) %attr(4755,root,root) %{_bindir}/pkexec
|
||||
%{_bindir}/pkttyagent
|
||||
%dir %{_libexecdir}/polkit-1
|
||||
%{_libexecdir}/polkit-1/polkitd
|
||||
@ -253,6 +263,10 @@ install -m0644 %{SOURCE3} %{buildroot}%{_sysusersdir}/
|
||||
%{_datadir}/gettext/its/polkit.its
|
||||
%{_datadir}/gettext/its/polkit.loc
|
||||
|
||||
%files -n pkexec
|
||||
%{_mandir}/man1/pkexec.1%{?ext_man}
|
||||
%verify(not mode) %attr(4755,root,root) %{_bindir}/pkexec
|
||||
|
||||
%files doc
|
||||
%doc NEWS
|
||||
%doc %{_datadir}/gtk-doc/html/polkit-1/
|
||||
|
||||
Loading…
Reference in New Issue
Block a user