Overview Repositories Revisions Requests Users Attributes Meta

Revisions of permissions

Ana Guerrero's avatar Ana Guerrero (anag+factory) accepted request 1219087 from Filippo Bonazzi's avatar Filippo Bonazzi (fbonazzi) (revision 167) 
- Update to version 1699_20241029:
  * Add RPM macros; moved from rpm-config-SUSE
  * package RPM macros together with permctl, to avoid having to setup an
    extra sub-package.
Ana Guerrero's avatar Ana Guerrero (anag+factory) accepted request 1176713 from Matthias Gerstner's avatar Matthias Gerstner (mgerstner) (revision 166) 
- Update to version 1699_20240522:
  * man pages: minor corrections (bsc#1224822)
Ana Guerrero's avatar Ana Guerrero (anag+factory) accepted request 1173700 from Matthias Gerstner's avatar Matthias Gerstner (mgerstner) (revision 164) 
- rename chkstat package to permctl to match the new binary names. Establish
  Provides/Obsoletes to keep dependencies and old package cleanup in working
  order, see:
  https://en.opensuse.org/openSUSE:Package_dependencies#Renaming_a_package
- add BuildRequires for acl programs for tests to succeed. Still keep %check
  disabled, because the new ACL test fails without /etc/subuid, /etc/subgid
  setup.

- Update to version 1699_20240513:
  * chkstat: has been renamed to permctl to better reflect its purpose. A
    symlink for backward compatibility will remain in place.
  * documentation: updated man pages
  * ACL support: permctl (formerly chkstat) now supports an additional `+acl`
    syntax to support assigning ACLs to files similar to the already existing
    support for file based capabilities.
Dominique Leuenberger's avatar Dominique Leuenberger (dimstar_suse) accepted request 1155258 from Filippo Bonazzi's avatar Filippo Bonazzi (fbonazzi) (revision 162) 
- Update to version 1699_20240305:
  * chkstat: EntryProcessor: make error handling in safeOpen() clearer
  * chkstat regtests: catch bad error reporting for non-existent files
  * chkstat: EntryProcessor: don't report errors for non-existent files
- Update to version 1699_20240223:
  * chkstat: replace ProcMountState enum by simple bool member
  * chkstat: minor style, spelling and documentation fixes
  * chkstat: drop types.h header
  * chkstat: make ProcMountState a private type of ChkStat
  * chkstat: EntryProcessor: rename some member variables for improved readability
  * chkstat: get rid of EntryContext and incorporate it into EntryProcessor
  * chkstat: split-off EntryProcessor from Chkstat main class
  * chkstat: define _GNU_SOURCE via Makefile
  * chkstat: processEntries(): make loop variables const
  * chkstat: split up checkHaveProc()
  * chkstat: ProfileParser: fix a bug when applying capabilities in custom root
  * chkstat: ProfileParser: make adding the root to paths transparent
  * chkstat: ProfileParser: refactor the now reduced codebase
  * chkstat: split off separate ProfileParser
  * chkstat: ProfileEntry: mark dropXID() const to support const ProfileEntry use
  * chkstat: parseProfile(): improve badProfileLine() calls
  * chkstat: drop deprecated capability check
  * chkstat: also move expandProfilePaths() into new VariableExpansions class
  * chkstat: split off variable expansion logic into separate class
  * chkstat: loadVariableExpansions(): a bit of refactoring
  * chkstat: parseSysconfig(): bit of refactoring
  * chkstat: remove deprecated CHECK_PERMISSIONS logic
  * chkstat: move assorted types into dedicated header
  * chkstat: replace #include guards by #pragma once
  * chkstat: split off command line arguments from Chkstat main class
  * chkstat: drop SaneValueArg wrapper
  * chkstat: document new packages.d directory
  * chkstat: drop TODO regarding ProfileEntry being changed on-the-fly
  * chkstat: harmonize FileCapabilities API
  * chkstat: support /usr/share/permissions/package.d for per-package drop-ins
  * chkstat: minor coding style fixes
  * chkstat: improve readability for rstrip() to strip trailing slashes
  * chkstat: remove trailing slashes from paths found on the command line
  * chkstat: add warning messages for rare error situations
  * chkstat: open profiles right away without racy `access()` check.
- Remove fix_version.sh, handle version with services
Ana Guerrero's avatar Ana Guerrero (anag+factory) accepted request 1144679 from Wolfgang Frisch's avatar Wolfgang Frisch (wfrisch) (revision 161) 
- Drop superfluous mkdir /usr/share/permissions/permissions.d
  This is now created by the Makefile. See also 
  commit 5900bc1ffe6275298ded3c96dee03a5c98e4db1c

- Update to version 20240206:
  * Whitelisting libgtop_server2 (bsc#1218921)
  * Removing bogus whitespaces
  * chkstat: harmonize and transform to a more compact coding and doc style
  * gitignore: also ignore hidden ctags
  * build: Create /usr/share/permissions/permissions.d for packagers
  * profiles: drop /usr/sbin/lockdev which is no longer packaged in Factory
  * profiles: drop /etc/ftpusers which is no longer shipped in netcfg
Dominique Leuenberger's avatar Dominique Leuenberger (dimstar_suse) accepted request 1090495 from Matthias Gerstner's avatar Matthias Gerstner (mgerstner) (revision 158) 
- Update to version 20230602:
  * profiles: remove dropped pppoe-wrapper
Dominique Leuenberger's avatar Dominique Leuenberger (dimstar_suse) accepted request 1087401 from Matthias Gerstner's avatar Matthias Gerstner (mgerstner) (revision 157) 
- Update to version 20230516:
  * common permissions: add icingaweb2 setgid directory (bsc#1211314)
Dominique Leuenberger's avatar Dominique Leuenberger (dimstar_suse) accepted request 1066365 from Matthias Gerstner's avatar Matthias Gerstner (mgerstner) (revision 155) 
- Update to version 20230217:
  * shadow: newgidmap,newuidmap: use capabilities (bsc#1208309)
  * profiles: whitelist kismet capabilities (bsc#1200954) (#171)
Dominique Leuenberger's avatar Dominique Leuenberger (dimstar_suse) accepted request 1043915 from Matthias Gerstner's avatar Matthias Gerstner (mgerstner) (revision 154) 
- Update to version 20221220:
  * profiles: remove outdated kdesud, apptainer entries
Dominique Leuenberger's avatar Dominique Leuenberger (dimstar_suse) accepted request 1006712 from Factory Maintainer's avatar Factory Maintainer (factory-maintainer) (revision 153) 
Automatic submission by obs-autosubmit
Dominique Leuenberger's avatar Dominique Leuenberger (dimstar_suse) accepted request 1003262 from Matthias Gerstner's avatar Matthias Gerstner (mgerstner) (revision 152) 
- Update to version 20220912:
  * chkstat: also consider group controlled paths (bsc#1203018,
    CVE-2022-31252)
Dominique Leuenberger's avatar Dominique Leuenberger (dimstar_suse) accepted request 961063 from Matthias Gerstner's avatar Matthias Gerstner (mgerstner) (revision 150) 
- Update to version 20220309:
  * apptainer whitelisting (bsc#1196145)

- Update to version 20220202:
  * mount.nfs: switch from migration mode to fixed path in /usr/sbin
  * changed gendered pronouns
  * mgetty: faxq-helper now finally reside in /usr/libexec
Dominique Leuenberger's avatar Dominique Leuenberger (dimstar_suse) accepted request 915438 from Matthias Gerstner's avatar Matthias Gerstner (mgerstner) (revision 149) 
- Update to version 20210901:
  * libksysguard5: Updated path for ksgrd_network_helper
  * kdesu: Updated path for kdesud
  * sbin_dirs cleanup: these binaries have already been moved to /usr/sbin
  * mariadb: revert auth_pam_tool to /usr/lib{,64} again
  * cleanup: revert virtualbox back to plain /usr/lib
  * cleanup: remove deprecated /etc/ssh/sshd_config
  * hawk_invoke is not part of newer hawk2 packages anymore
  * cleanup: texlive-filesystem: public now resides in libexec
  * cleanup: authbind: helper now resides in libexec
  * cleanup: polkit: the agent now also resides in libexec
  * libexec cleanup: 'inn' news binaries now reside in libexec
Dominique Leuenberger's avatar Dominique Leuenberger (dimstar_suse) accepted request 894035 from Matthias Gerstner's avatar Matthias Gerstner (mgerstner) (revision 148) 
- Update to version 20210518:
  * whitelist please (bsc#1183669)

- Update to version 20210518:
  * Fix enlightenment paths for 32-bit architectures
Displaying revisions 1 - 20 of 167
openSUSE Build Service is sponsored by
Places