1 |
tetromino 12/06/25 09:32:05 |
2 |
|
3 |
Modified: ChangeLog |
4 |
Added: polkit-0.106-r3.ebuild |
5 |
Log: |
6 |
pax-mark polkitd to fix crashes on hardened/PaX systems. |
7 |
|
8 |
(Portage version: 2.2.0_alpha112/cvs/Linux x86_64) |
9 |
|
10 |
Revision Changes Path |
11 |
1.87 sys-auth/polkit/ChangeLog |
12 |
|
13 |
file : http://sources.gentoo.org/viewvc.cgi/gentoo-x86/sys-auth/polkit/ChangeLog?rev=1.87&view=markup |
14 |
plain: http://sources.gentoo.org/viewvc.cgi/gentoo-x86/sys-auth/polkit/ChangeLog?rev=1.87&content-type=text/plain |
15 |
diff : http://sources.gentoo.org/viewvc.cgi/gentoo-x86/sys-auth/polkit/ChangeLog?r1=1.86&r2=1.87 |
16 |
|
17 |
Index: ChangeLog |
18 |
=================================================================== |
19 |
RCS file: /var/cvsroot/gentoo-x86/sys-auth/polkit/ChangeLog,v |
20 |
retrieving revision 1.86 |
21 |
retrieving revision 1.87 |
22 |
diff -u -r1.86 -r1.87 |
23 |
--- ChangeLog 23 Jun 2012 04:01:20 -0000 1.86 |
24 |
+++ ChangeLog 25 Jun 2012 09:32:04 -0000 1.87 |
25 |
@@ -1,6 +1,12 @@ |
26 |
# ChangeLog for sys-auth/polkit |
27 |
# Copyright 1999-2012 Gentoo Foundation; Distributed under the GPL v2 |
28 |
-# $Header: /var/cvsroot/gentoo-x86/sys-auth/polkit/ChangeLog,v 1.86 2012/06/23 04:01:20 ssuominen Exp $ |
29 |
+# $Header: /var/cvsroot/gentoo-x86/sys-auth/polkit/ChangeLog,v 1.87 2012/06/25 09:32:04 tetromino Exp $ |
30 |
+ |
31 |
+*polkit-0.106-r3 (25 Jun 2012) |
32 |
+ |
33 |
+ 25 Jun 2012; Alexandre Rostovtsev <tetromino@g.o> |
34 |
+ +polkit-0.106-r3.ebuild: |
35 |
+ pax-mark polkitd to fix crashes on hardened/PaX systems. |
36 |
|
37 |
23 Jun 2012; Samuli Suominen <ssuominen@g.o> polkit-0.106-r2.ebuild: |
38 |
Convert pkg_postinst() message about polkitd home directory to new |
39 |
|
40 |
|
41 |
|
42 |
1.1 sys-auth/polkit/polkit-0.106-r3.ebuild |
43 |
|
44 |
file : http://sources.gentoo.org/viewvc.cgi/gentoo-x86/sys-auth/polkit/polkit-0.106-r3.ebuild?rev=1.1&view=markup |
45 |
plain: http://sources.gentoo.org/viewvc.cgi/gentoo-x86/sys-auth/polkit/polkit-0.106-r3.ebuild?rev=1.1&content-type=text/plain |
46 |
|
47 |
Index: polkit-0.106-r3.ebuild |
48 |
=================================================================== |
49 |
# Copyright 1999-2012 Gentoo Foundation |
50 |
# Distributed under the terms of the GNU General Public License v2 |
51 |
# $Header: /var/cvsroot/gentoo-x86/sys-auth/polkit/polkit-0.106-r3.ebuild,v 1.1 2012/06/25 09:32:04 tetromino Exp $ |
52 |
|
53 |
EAPI=4 |
54 |
inherit eutils pam pax-utils systemd user |
55 |
|
56 |
DESCRIPTION="Policy framework for controlling privileges for system-wide services" |
57 |
HOMEPAGE="http://www.freedesktop.org/wiki/Software/polkit" |
58 |
SRC_URI="http://www.freedesktop.org/software/${PN}/releases/${P}.tar.gz" |
59 |
|
60 |
LICENSE="LGPL-2" |
61 |
SLOT="0" |
62 |
KEYWORDS="~alpha ~amd64 ~arm ~mips ~ppc ~ppc64 ~sparc ~x86 ~x86-fbsd" |
63 |
IUSE="debug examples gtk +introspection kde nls pam systemd" |
64 |
|
65 |
RDEPEND=">=dev-lang/spidermonkey-1.8.5 |
66 |
>=dev-libs/glib-2.32 |
67 |
>=dev-libs/expat-2 |
68 |
introspection? ( >=dev-libs/gobject-introspection-1 ) |
69 |
pam? ( |
70 |
sys-auth/pambase |
71 |
virtual/pam |
72 |
) |
73 |
systemd? ( sys-apps/systemd )" |
74 |
DEPEND="${RDEPEND} |
75 |
app-text/docbook-xml-dtd:4.1.2 |
76 |
app-text/docbook-xsl-stylesheets |
77 |
dev-libs/libxslt |
78 |
dev-util/intltool |
79 |
virtual/pkgconfig" |
80 |
PDEPEND=" |
81 |
gtk? ( || ( |
82 |
>=gnome-extra/polkit-gnome-0.105 |
83 |
lxde-base/lxpolkit |
84 |
) ) |
85 |
kde? ( sys-auth/polkit-kde-agent ) |
86 |
pam? ( |
87 |
systemd? ( sys-auth/pambase[systemd] ) |
88 |
!systemd? ( sys-auth/pambase[consolekit] ) |
89 |
) |
90 |
!systemd? ( >=sys-auth/consolekit-0.4.5_p2012[policykit] )" |
91 |
|
92 |
DOCS="docs/TODO HACKING NEWS README" |
93 |
|
94 |
pkg_setup() { |
95 |
local u=polkitd |
96 |
local g=polkitd |
97 |
local h=/var/lib/polkit-1 |
98 |
|
99 |
enewgroup ${g} |
100 |
enewuser ${u} -1 -1 ${h} ${g} |
101 |
esethome ${u} ${h} |
102 |
} |
103 |
|
104 |
src_prepare() { |
105 |
sed -i -e '/unix-group/s:wheel:adm:' src/polkitbackend/*-default.rules || die #401513 |
106 |
|
107 |
has_version ">=dev-lang/spidermonkey-1.8.7" && { sed -i -e '/mozjs/s:185:187:g' configure || die; } |
108 |
} |
109 |
|
110 |
src_configure() { |
111 |
local myconf="--with-authfw=shadow" |
112 |
use pam && \ |
113 |
myconf="--with-authfw=pam --with-pam-module-dir=$(getpam_mod_dir) --with-pam-include=system-local-login" |
114 |
|
115 |
econf \ |
116 |
--localstatedir="${EPREFIX}"/var \ |
117 |
--disable-static \ |
118 |
$(use_enable debug verbose-mode) \ |
119 |
--enable-man-pages \ |
120 |
--disable-gtk-doc \ |
121 |
$(use_enable systemd libsystemd-login) \ |
122 |
$(use_enable introspection) \ |
123 |
--disable-examples \ |
124 |
$(use_enable nls) \ |
125 |
--with-os-type=gentoo \ |
126 |
"$(systemd_with_unitdir)" \ |
127 |
${myconf} |
128 |
} |
129 |
|
130 |
src_install() { |
131 |
default |
132 |
|
133 |
fowners -R polkitd:root /{etc,usr/share}/polkit-1/rules.d |
134 |
|
135 |
prune_libtool_files |
136 |
|
137 |
diropts -m0700 -o polkitd -g polkitd |
138 |
keepdir /var/lib/polkit-1 |
139 |
|
140 |
if use examples; then |
141 |
insinto /usr/share/doc/${PF}/examples |
142 |
doins src/examples/{*.c,*.policy*} |
143 |
fi |
144 |
|
145 |
# Required for polkitd on hardened/PaX due to spidermonkey's JIT |
146 |
pax-mark mr "${ED}usr/lib/polkit-1/polkitd" |
147 |
} |
148 |
|
149 |
pkg_postinst() { |
150 |
chown -R polkitd:root "${EROOT}"/{etc,usr/share}/polkit-1/rules.d |
151 |
chown -R polkitd:polkitd "${EROOT}"/var/lib/polkit-1 |
152 |
|
153 |
echo |
154 |
ewarn "The default administrator unix-group was changed from \"wheel\" to" |
155 |
ewarn "\"adm\", see *-default.rules in /etc/polkit-1/rules.d" |
156 |
ewarn "Users of unix-group \"adm\" can run, for example, \"pkexec /bin/sh\"" |
157 |
ewarn "to gain root shell without root password." |
158 |
ewarn "For more information, see http://bugs.gentoo.org/401513" |
159 |
} |