From eac9c25f04eb0269ebcfa04a3e17d6d627500e771d65f248c11f336d7faf8fda Mon Sep 17 00:00:00 2001
From: Martin Pluskal <mpluskal@suse.com>
Date: Tue, 1 Nov 2022 08:27:26 +0000
Subject: [PATCH] Accepting request 1030863 from home:gladiac

Add the latest cwrap wrapper ...

OBS-URL: https://build.opensuse.org/request/show/1030863
OBS-URL: https://build.opensuse.org/package/show/devel:tools/priv_wrapper?expand=0&rev=1
---
 .gitattributes                |  23 +++++++++
 .gitignore                    |   1 +
 priv_wrapper-1.0.0.tar.gz     |   3 ++
 priv_wrapper-1.0.0.tar.gz.asc |  16 +++++++
 priv_wrapper-rpmlintrc        |   7 +++
 priv_wrapper.changes          |   4 ++
 priv_wrapper.keyring          | Bin 0 -> 3432 bytes
 priv_wrapper.spec             |  88 ++++++++++++++++++++++++++++++++++
 8 files changed, 142 insertions(+)
 create mode 100644 .gitattributes
 create mode 100644 .gitignore
 create mode 100644 priv_wrapper-1.0.0.tar.gz
 create mode 100644 priv_wrapper-1.0.0.tar.gz.asc
 create mode 100644 priv_wrapper-rpmlintrc
 create mode 100644 priv_wrapper.changes
 create mode 100644 priv_wrapper.keyring
 create mode 100644 priv_wrapper.spec

diff --git a/.gitattributes b/.gitattributes
new file mode 100644
index 0000000..9b03811
--- /dev/null
+++ b/.gitattributes
@@ -0,0 +1,23 @@
+## Default LFS
+*.7z filter=lfs diff=lfs merge=lfs -text
+*.bsp filter=lfs diff=lfs merge=lfs -text
+*.bz2 filter=lfs diff=lfs merge=lfs -text
+*.gem filter=lfs diff=lfs merge=lfs -text
+*.gz filter=lfs diff=lfs merge=lfs -text
+*.jar filter=lfs diff=lfs merge=lfs -text
+*.lz filter=lfs diff=lfs merge=lfs -text
+*.lzma filter=lfs diff=lfs merge=lfs -text
+*.obscpio filter=lfs diff=lfs merge=lfs -text
+*.oxt filter=lfs diff=lfs merge=lfs -text
+*.pdf filter=lfs diff=lfs merge=lfs -text
+*.png filter=lfs diff=lfs merge=lfs -text
+*.rpm filter=lfs diff=lfs merge=lfs -text
+*.tbz filter=lfs diff=lfs merge=lfs -text
+*.tbz2 filter=lfs diff=lfs merge=lfs -text
+*.tgz filter=lfs diff=lfs merge=lfs -text
+*.ttf filter=lfs diff=lfs merge=lfs -text
+*.txz filter=lfs diff=lfs merge=lfs -text
+*.whl filter=lfs diff=lfs merge=lfs -text
+*.xz filter=lfs diff=lfs merge=lfs -text
+*.zip filter=lfs diff=lfs merge=lfs -text
+*.zst filter=lfs diff=lfs merge=lfs -text
diff --git a/.gitignore b/.gitignore
new file mode 100644
index 0000000..57affb6
--- /dev/null
+++ b/.gitignore
@@ -0,0 +1 @@
+.osc
diff --git a/priv_wrapper-1.0.0.tar.gz b/priv_wrapper-1.0.0.tar.gz
new file mode 100644
index 0000000..6967607
--- /dev/null
+++ b/priv_wrapper-1.0.0.tar.gz
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:00a46013aee3b1fddb8c84369bbcb7f7733969ce3db9e1ce44fe3237d07d8535
+size 31545
diff --git a/priv_wrapper-1.0.0.tar.gz.asc b/priv_wrapper-1.0.0.tar.gz.asc
new file mode 100644
index 0000000..1fcb2aa
--- /dev/null
+++ b/priv_wrapper-1.0.0.tar.gz.asc
@@ -0,0 +1,16 @@
+-----BEGIN PGP SIGNATURE-----
+
+iQIzBAABCgAdFiEEjf9T4Y8qvI2PPJIjfuD8TcwBTj0FAmNWbwUACgkQfuD8TcwB
+Tj2r+BAApO1QivmVmz8S+QFk30gK/gJ2ZdXlh+i7ZkalfWDRoqym6JZ9NntG9I59
+aslMNjwb2T1ADKFXfzr2lC5iioNexMhL38WBddjpCE4fXTa4+BCKi36rPQhN4mIQ
+HWxKSl3XIYWbLbS3Ug9GAVI6UyLmLakANWSVvMKBpuN+gMpeTVsQPbBA3GhkaN8v
+vc8Z2BBS/jUwqvtogi1rmwE7vWTOh3/Vcmp2YWwRDi6gAnr0A9tgoaRb+TDMy4rw
+yhoHc+eIO5v+rQmDBl3x1Sr69Xc9HMEjCBL1n2BpigIR+wy65m+nkCtYydcXsfcF
+cZZOu8t8YWFvIaAFmNtr0J+ZKncSyc+i+8I3Hub6vl6XI7ruAxzzcruNW6FBzG2P
+s1Ng8YB2Qg0STP3Tc5Px4kmwcAIn4JtDQ05GWl0I3BkEFYTgJakm82VHmD+RNZjk
+AGkrqw5jIUkpWfvUQ3w3wsUTvB1AaOPKk7zMAPV9ZjhYaVHQycNEaErUluxD4M8r
+VwXZJewIVkFo08O0mmy0xBUTXr/V1JwSUcHVmP1a8gAW+G8esDU5dX8QTfcHH7mM
+LpG35uHOzgakjOwIyEJtlYLo4YGdpxT0TDD5zkaF4ZtXqCQ3/gBWhse2Zt56arKm
++oFPFzt+lFmgn49xzfEgIanOIb1rdujyfLK5huGvXilNoWWGeKk=
+=llkX
+-----END PGP SIGNATURE-----
diff --git a/priv_wrapper-rpmlintrc b/priv_wrapper-rpmlintrc
new file mode 100644
index 0000000..49634f9
--- /dev/null
+++ b/priv_wrapper-rpmlintrc
@@ -0,0 +1,7 @@
+# This is a special library only for testing purposes. You cannot link this
+# library. It is only inteded to be used with LD_PRELOAD. This package is
+# the devel package.
+#
+# Learn more at http://cwrap.org
+#
+addFilter("devel-file-in-non-devel-package")
diff --git a/priv_wrapper.changes b/priv_wrapper.changes
new file mode 100644
index 0000000..40be57f
--- /dev/null
+++ b/priv_wrapper.changes
@@ -0,0 +1,4 @@
+-------------------------------------------------------------------
+Mon Oct 24 11:06:37 UTC 2022 - Andreas Schneider <asn@cryptomilk.org>
+
+- Initial package
diff --git a/priv_wrapper.keyring b/priv_wrapper.keyring
new file mode 100644
index 0000000000000000000000000000000000000000000000000000000000000000..da7a828d183d177caf63eead37cdfcea0a46ea1f7a2f6a75b1c7d5bfed89bfaa
GIT binary patch
literal 3432
zcma*p_ct4i!ocx}QL!m1M$D?3u}kf!7>&Kfo>jzNwfC+*)QGKCjjC0OQpBF2iW)Uz
zuiB;D=e_5i^FF`a_q_kZ=X}pM8%R!|t2L&GM+F!>lQPCyyIvl`cuN@$-G>|ou&}^A
zn93lyCo!q)4>ia3)el-n*1nj^vXJGQThLGx{NnCp;L^s1(PBlSFEXaSzqiqHCY|Id
zZL;oMaJk9*-Y}D^u@0LTMT-kB>#wDZL;*&GW~y!D9OJcT_H}-W3Uz%p8N&m4CUS7>
zD-$(<Q0Rin2ZbvT#4@%p*p-6Qpdn}&eXD!b!oW3Vdv^x`%vCCkv$DP~_2;fG63dDF
z)Vs*PTRs0wyTTsNR1PXoSSG@*;uag+hDv{3K1O>KGF!hH;-%I|{sgrT=$64vNgx3y
zk6cyafMfnTZk;oDS-&XwToz$?4HG2<BD)9|X7ff8jPsXm%i$S=KY8d3tEZznrNI)=
zqjaR2ssOtUGg1@3&Nq2i=-WuipLf^WR->@AT|d5v#;2?GmSH}<BXQipud9?v=-6?)
zEFl^7%MWlpPmdQYRRGfLVs}1vgvFDr6%@0(K300ZJTX!3RY`)`CaE)#hx`LVvr}%e
zw1yY=Vl9bO0{7wPt+iuxg<oG5>!`IX4V3Z4b)oAz=2pZRy9};;0<bn_kHW4QJPZ?9
zFgKvbSpU$^a#zQG7AK5?ngP4ulU-$2=Jd6T^k!DL6~I_`{q;q=hhIf)1TMT-6|QOK
z#hda}=ONmQm@=o48D>gB`uUi48bFN)z-#1IbhGocxAtPwvvqQ_e_?0u$tGj%<)&ck
z8Q|`Xa(&_QQV`|oC>IZuA-InR1aJeH@b8g=i0|P8@rdY%fglo60(u}m9uR^Dd=N$m
z)YY0y1%mMaBp|B4(I7_fG-dsvRDkl6bCGmiA5G$Wu-n+uzoaaMu@$LFQM>wT1WY?3
zkl`S1YZ{^K;Uc068akUF1?XQKYWin<?<+A|Y2ZU<kZ^2GPcRAH38F?<39)cFRo0M{
zfK)D$ybXdHo>R_qf+5tTaDS_T&5Ma%Qm@G;UzWb@ER&0dP!?BHkITj|CtGNKbVNej
z^lkm9-UehnIPes}p8v8%fo!NF=Q^yS+AIR;^i0_BpS^!=Kj~h~_;AMZ4aWG-`p&!R
zpR#c?AE884S%wnC0!E2!;Y>4$>5i8V5ANh!F7EuIOa^XfzIy*w!jmz`@A~n$ZZ3Kg
z_oO8&P2}g~Fh|=CGB}UT*PCi)s-!iX!EppqJumx>_>mJMVZVI0?SbIjgQ{c_NSakw
z`4M;YuIJ}Z9T^iUjIA37yxz}`Mmtk$DQGlQZ;o7J6d{8@R}%Vub^jQ{AoY1A!V6a}
zv)ZQ)9{<)V|MRryQ3(L|g3`GU8lUg+XGNQ0987ZjhsSeg755GLk>uV|j8CTO-17Gv
zp;H2@iV;>N2EwE?4A%-Jox5bFe5|m>t#R1^fctzM(v~NmEYbIh+dMvRX}aigPdaE%
z?Nu{Q8@b}hI16GDuQ{koe6uP1gVwzmj*n|oJw`I`<@$kdICa^!IpsB8Hl<_3bj@{R
zmU>q6v#(>p&V~FexOG?~`+s5PW$kKX{U2dc{}#si{}A?1UUBM_cZOh|e%=GAb4Kd6
zX+>srORAGXdV`JT-=yuy#W_)o!oK<w5n8|m4<5;?^L~}u)hu%kA`n62Cf3wg7lNVh
zQKuQrvg+-QJ_O+}Y^L8Z#vl`fv4QJuZN_L*mKxwri6mHuztuWXot>ZSI-9@xf^BSv
z%Hk}`Yyao{>7sq?s3>&C@=*tymxWj=yV^oAKmHzcTphuh`yDHy4=kVKb4hh>DFyk-
zU>-M>wcYvD^B8qsX(~3PB-dPhXkLknp5KaY-ZvbDy87eWgJ-Bw9f8=4N$8C91iw8`
zxj*TZjb$9wiJnswT}*k;O^OA**D2X9!-em&Su-eTo|Cn54lh)QPr;w+x&gCH@u7_-
zEQZR+2z`&wMOyH6uMiEFGewgo`PtW&$&<ujL+<=8NfYy%(%gz79oCu7Lb}g<rU!!s
zr6$F>5lODY-`63il0sKZbPatrF_~toqOs)!+e-?K*ID_Amsgsij+&6!VzOiML>Vxu
zrco_mQ;jwd<&lWc7-53eO(L}0lB|1YJ#F88*WM>ZZcrE#eiJEks%aCtQb%tjjR8BV
ze7pCKRwR=|cZgMesASEajgof2Q-(qgESH*UV_8zy#P7$N3%ykl@H*wxT&qn<Y2QS)
zb0!JEFN?I0uQb)=!x_P6ZykS$#hiDc5w{vyLh_9q|Am*Qy`7V_x1cS`_3wiH#}^^c
z@CIk{e=7T@FSsZbpvTa>ymykBQMd5%ow{~hF8%j}XMNe#iHeLGSoPE)gOBbfoSALf
zF?Id99)$^fWAle0j3GA8$=k(dm|1WKh^YXkr)_>fIZ>LNGUFuWq_5mS#HG@*PjJEQ
zACBeFxIa7yBjx`~J5-Doq1CXpq^eOvX?jP}k|sAm#uCHfwFU$pi%jP&lN)i$i<_<%
zI#iH+507AW6^$2<rFB>V7H8@fG~a&Wx-THchjmwYw&=@&@rvXivU!*&R<0WENa@&U
zw49x3)}*`1l7lmjgiRu1s^nx<&`BfX@d8O}pC=;Dm@oHpi!NUXN4qbJ(ywyFJOT%*
zGt*8_A;rAPm-So5$dFu#0;sp@%kpA->Z9tJ(U=;XJC|feP;3osXIaj=qvT`Ic%BEf
zMW1;8Wb||V1yWEW;B>RaL(dU%C6CpshsL)Z@IWA2<@He-4n)I~_vGcynDD7n(F%9M
ztLI{euUf!LrBHpc^W?3`t&vasi6N}_tKo*D_)WA=zE!@?{A&?VL$KoO)~|}TvfS7+
zUXclP7$|wNZ6!TZU{elwB=Wp2$7HA(H6Xwl4^tcrnF>Le61(<)4BH5lK`(He^UGy*
z%b`7!GiNz&5S>wD4`49*&E0Cr$t-DGPI5I&KYqekSA0EePKz{T#EXasY{9c6dv{yv
zL%{X<f3FEUcO4}anUf#2&WFuY9Dlxiy<hKu?~}3{>H@+be$s7xul(fTdfJuJ;uyp)
z6t3uCz<)`528o7Nyd$l2l|Y5&XPoxUyIdGMRwuhk6WWJ9^{u<7yf3T#u|{}N_jm0p
ziG*>B&4R**r*0}{4{oPZYS;#x*!+in_-dxU5>=M*(Q(>mhqs_R4`+9##H{rQDNmd$
z<3GL8m+<sdGPM2bt85rcnlbx3j&ys+ad~WnSHEpcNB8I?{?K>A2c+HN0Em|MzNi4e
zszZ^O3|CJCW&}y2kY0M)Q)(7n%-OHtW{!&MCPB`pRyAe6PtJ9^PT^+x5Ms?2lpEcg
zxLE42T2Q;)-@I2rN3bZf`ZGVsESUm*azDxK)1S)?X1dOY6Fk110>vSA>xs@(83LvN
zrqZ8RqPwhP2MbDS8dN(KLk<<PcIoI7CV{$~1iP)O)}3Dv#?U$O>M0^X91Y&-2YtVD
z7BEl8V*IU1za57kjLA}OZbyBE4RPh&y<U51m;K|*WkyL(d-Ze_B8|+AJ2#`{oy2p~
z%fX><C6}K?76V0o^C`_khP8GWv)*38V@BzX25k^&b_2E^DS0BY)Z@F1=8unNeq}hY
zxARwiM-i^4o2J$i>8`PFdQ<wg2&gHeMis)8M2ZRHuARlw*ihq+!WUbMBzb$s1MX)3
zzNUB}D*?mbHw5~h;Tcl|GLikW819plx6<MSCR1{4S$tQEiccC_9kqt}-@J)R@KO@2
zn?l>S*AN%(*I0Dhl5g_`w+fV-wDz^?%e-M<C3)!{^t4?_TS_UL^8wlmS0VjkPt0b0
z!2pFBbm^l_JIf1@?xcus3k^TE5jk9&CKbocB|@#VrP+QMzk%ap@W3IK(5a6k_Y;C@
zPo%@WHEP%btZO6Qe^okPJv4Zxfj7jfayx1{G7NeWeJaLAp|sVUSF}$RJ3^z*!VLRz
zvt_0Sp9q^0<xU>C+^^F)pKXO*>8GLAobn_18oHSlg1D@CVQ@t^{77jP+?~bsVsupi
zx!ysj!tWst*4B-=Dlp12NVb<o>B|9bzI+YYMDxj^+?*_K=k1?_vXW+YMq5Fgxu<yI
z73AXcQXG+%_Af+SWC4-kK~oR45ff-Lb1iWx_+rleU3#diM(^1R;zGf90!!plR61*C
zs=9p%aNF+C0P%>;00GLv7ozi8D%0m6&DgGm$ag&vThM`$#;S<X723K2s$e<|&q7lQ
zW1P`E+<>->ro4Abem9=|F=4Q<)fXi_hC?5-{)I4qJ<*-gGX^b5V}^M4xQA-l?J3`=
z+j%iAdqjf#6K6CNg}+~#7iki!4|J-=5~{hT*G;m(8i?A7`d1HoY>4HBTts484LyV#
WZDm2tMA4T=UAs2at-!xR8~z2&g;JCN

literal 0
HcmV?d00001

diff --git a/priv_wrapper.spec b/priv_wrapper.spec
new file mode 100644
index 0000000..4883230
--- /dev/null
+++ b/priv_wrapper.spec
@@ -0,0 +1,88 @@
+#
+# spec file for package priv_wrapper
+#
+# Copyright (c) 2022 Andreas Schneider
+#
+# All modifications and additions to the file contributed by third parties
+# remain the property of their copyright owners, unless otherwise agreed
+# upon. The license for this file, and modifications and additions to the
+# file, is the same license as for the pristine package itself (unless the
+# license for the pristine package is not an Open Source License, in which
+# case the license is the MIT License). An "Open Source License" is a
+# license that conforms to the Open Source Definition (Version 1.9)
+# published by the Open Source Initiative.
+
+# Please submit bugfixes or comments via https://bugs.opensuse.org/
+#
+
+
+############################# NOTE ##################################
+#
+# This is a special library. You are not able to link this library.
+# Do NOT create library package or a devel package!
+#
+############################# NOTE ##################################
+Name:           priv_wrapper
+Version:        1.0.0
+Release:        0
+Summary:        A library to disable resource limits and other privilege dropping
+License:        GPL-3.0-or-later
+Group:          Development/Libraries/C and C++
+URL:            https://cwrap.org/
+Source0:        https://ftp.samba.org/pub/cwrap/%{name}-%{version}.tar.gz
+Source1:        %{name}-rpmlintrc
+Source2:        https://ftp.samba.org/pub/cwrap/%{name}-%{version}.tar.gz.asc
+Source3:        priv_wrapper.keyring
+BuildRequires:  cmake
+BuildRequires:  libcmocka-devel
+BuildRequires:  pkgconf
+BuildRequires:  user(nobody)
+Recommends:     cmake
+Recommends:     pkgconf
+
+%description
+priv_wrapper aims to help running processes which are dropping privileges or are
+restricting resources in test environments.
+It can disable chroot, prctl, pledge and setrlmit system calls. A disabled call always
+succeeds (i.e. returns 0) and does nothing.
+The system call pledge exists only on OpenBSD.
+
+To use it, set the following environment variables:
+
+LD_PRELOAD=libpriv_wrapper.so
+PRIV_WRAPPER_CHROOT_DISABLE=1
+
+This package does not have a devel package, because this project is for
+development/testing.
+
+%prep
+%setup -q
+
+%build
+# CMAKE_SKIP_RPATH:BOOL=OFF is need to run the tests!
+%cmake \
+  -DUNIT_TESTING=ON \
+  -DCMAKE_SKIP_RPATH:BOOL=OFF
+
+%make_build
+
+%install
+%cmake_install
+
+%check
+%ctest
+
+%post -p /sbin/ldconfig
+%postun -p /sbin/ldconfig
+
+%files
+%doc AUTHORS README.md CHANGELOG.md
+%license LICENSE
+%{_libdir}/libpriv_wrapper.so*
+%dir %{_libdir}/cmake/priv_wrapper
+%{_libdir}/cmake/priv_wrapper/priv_wrapper-config-version.cmake
+%{_libdir}/cmake/priv_wrapper/priv_wrapper-config.cmake
+%{_libdir}/pkgconfig/priv_wrapper.pc
+%{_mandir}/man1/priv_wrapper.1%{?ext_man}
+
+%changelog