pool/polkit
SHA256
2
0
Fork 1
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Accepting request 989831 from Base:System

Browse Source 
- split out pkexec into seperate package to make system hardening
  easier (to avoid installing it jsc#PED-132 jsc#PED-148). (forwarded request 989830 from msmeissn)

OBS-URL: https://build.opensuse.org/request/show/989831
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/polkit?expand=0&rev=82
This commit is contained in:
Fabian Vogt 2022-07-31 21:00:22 +00:00 committed by Git OBS Bridge
commit c9cf44ea5a
2 changed files with 24 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
polkit.changes
View File

@ -1,3 +1,9 @@
-------------------------------------------------------------------
Mon Jul 18 09:38:28 UTC 2022 - Marcus Meissner <meissner@suse.com>
- split out pkexec into seperate package to make system hardening
easier (to avoid installing it jsc#PED-132 jsc#PED-148).
------------------------------------------------------------------- -------------------------------------------------------------------
Tue Feb 22 10:48:15 UTC 2022 - Marcus Meissner <meissner@suse.com> Tue Feb 22 10:48:15 UTC 2022 - Marcus Meissner <meissner@suse.com>

22
polkit.spec
View File

@ -90,6 +90,14 @@ Requires: typelib-1_0-Polkit-1_0 = %{version}
%description devel %description devel
Development files for PolicyKit Authorization Framework. Development files for PolicyKit Authorization Framework.
%package -n pkexec
Summary: pkexec component of polkit
Group: System/Libraries
Requires: %{name} = %{version}-%{release}
%description -n pkexec
This package contains the pkexec setuid root binary part of polkit.
%package doc %package doc
Summary: Development documentation for PolicyKit Summary: Development documentation for PolicyKit
Group: Development/Libraries/C and C++ Group: Development/Libraries/C and C++
@ -183,13 +191,17 @@ install -m0644 %{SOURCE3} %{buildroot}%{_sysusersdir}/
%postun %postun
%service_del_postun polkit.service %service_del_postun polkit.service
%post %post -n pkexec
%set_permissions %{_bindir}/pkexec %set_permissions %{_bindir}/pkexec
%post
%set_permissions %{_libexecdir}/polkit-1/polkit-agent-helper-1 %set_permissions %{_libexecdir}/polkit-1/polkit-agent-helper-1
%service_add_post polkit.service %service_add_post polkit.service
%verifyscript %verifyscript -n pkexec
%verify_permissions -e %{_bindir}/pkexec %verify_permissions -e %{_bindir}/pkexec
%verifyscript
%verify_permissions -e %{_libexecdir}/polkit-1/polkit-agent-helper-1 %verify_permissions -e %{_libexecdir}/polkit-1/polkit-agent-helper-1
%post -n libpolkit-agent-1-0 -p /sbin/ldconfig %post -n libpolkit-agent-1-0 -p /sbin/ldconfig
@ -210,7 +222,6 @@ install -m0644 %{SOURCE3} %{buildroot}%{_sysusersdir}/
%files -f polkit-1.lang %files -f polkit-1.lang
%license COPYING %license COPYING
%{_mandir}/man1/pkexec.1%{?ext_man}
%{_mandir}/man1/pkaction.1%{?ext_man} %{_mandir}/man1/pkaction.1%{?ext_man}
%{_mandir}/man1/pkcheck.1%{?ext_man} %{_mandir}/man1/pkcheck.1%{?ext_man}
%{_mandir}/man1/pkttyagent.1%{?ext_man} %{_mandir}/man1/pkttyagent.1%{?ext_man}
@ -231,7 +242,6 @@ install -m0644 %{SOURCE3} %{buildroot}%{_sysusersdir}/
%attr(0700,polkitd,root) %dir %{_sysconfdir}/polkit-1/rules.d %attr(0700,polkitd,root) %dir %{_sysconfdir}/polkit-1/rules.d
%{_bindir}/pkaction %{_bindir}/pkaction
%{_bindir}/pkcheck %{_bindir}/pkcheck
%verify(not mode) %attr(4755,root,root) %{_bindir}/pkexec
%{_bindir}/pkttyagent %{_bindir}/pkttyagent
%dir %{_libexecdir}/polkit-1 %dir %{_libexecdir}/polkit-1
%{_libexecdir}/polkit-1/polkitd %{_libexecdir}/polkit-1/polkitd
@ -253,6 +263,10 @@ install -m0644 %{SOURCE3} %{buildroot}%{_sysusersdir}/
%{_datadir}/gettext/its/polkit.its %{_datadir}/gettext/its/polkit.its
%{_datadir}/gettext/its/polkit.loc %{_datadir}/gettext/its/polkit.loc
%files -n pkexec
%{_mandir}/man1/pkexec.1%{?ext_man}
%verify(not mode) %attr(4755,root,root) %{_bindir}/pkexec
%files doc %files doc
%doc NEWS %doc NEWS
%doc %{_datadir}/gtk-doc/html/polkit-1/ %doc %{_datadir}/gtk-doc/html/polkit-1/