commit yast2-security for openSUSE:Factory

Source-Sync Tue, 25 Jan 2022 08:37:10 -0800

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package yast2-security for openSUSE:Factory 
checked in at 2022-01-25 17:35:54
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/yast2-security (Old)
 and      /work/SRC/openSUSE:Factory/.yast2-security.new.1938 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++


Package is "yast2-security"

Tue Jan 25 17:35:54 2022 rev:111 rq:948358 version:4.4.8

Changes:
--------
--- /work/SRC/openSUSE:Factory/yast2-security/yast2-security.changes    
2022-01-14 23:13:50.134654802 +0100
+++ /work/SRC/openSUSE:Factory/.yast2-security.new.1938/yast2-security.changes  
2022-01-25 17:36:56.281975684 +0100
@@ -1,0 +2,8 @@
+Mon Jan 24 09:45:55 UTC 2022 - Knut Anderssen <kanders...@suse.com>
+
+- Related to jsc#SLE-22069:
+  - Fix import of 'none' and 'apparmor' options from the profile
+    when declared
+- 4.4.8
+
+-------------------------------------------------------------------

Old:
----
  yast2-security-4.4.7.tar.bz2

New:
----
  yast2-security-4.4.8.tar.bz2

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Other differences:
------------------
++++++ yast2-security.spec ++++++
--- /var/tmp/diff_new_pack.4fGct2/_old  2022-01-25 17:37:00.377947473 +0100
+++ /var/tmp/diff_new_pack.4fGct2/_new  2022-01-25 17:37:00.385947418 +0100
@@ -17,7 +17,7 @@
 
 
 Name:           yast2-security
-Version:        4.4.7
+Version:        4.4.8
 Release:        0
 Summary:        YaST2 - Security Configuration
 License:        GPL-2.0-only

++++++ yast2-security-4.4.7.tar.bz2 -> yast2-security-4.4.8.tar.bz2 ++++++
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' old/yast2-security-4.4.7/package/yast2-security.changes 
new/yast2-security-4.4.8/package/yast2-security.changes
--- old/yast2-security-4.4.7/package/yast2-security.changes     2022-01-13 
14:52:22.000000000 +0100
+++ new/yast2-security-4.4.8/package/yast2-security.changes     2022-01-24 
11:04:13.000000000 +0100
@@ -1,4 +1,12 @@
 -------------------------------------------------------------------
+Mon Jan 24 09:45:55 UTC 2022 - Knut Anderssen <kanders...@suse.com>
+
+- Related to jsc#SLE-22069:
+  - Fix import of 'none' and 'apparmor' options from the profile
+    when declared
+- 4.4.8
+
+-------------------------------------------------------------------
 Tue Jan 11 00:06:20 UTC 2022 - Knut Anderssen <kanders...@suse.com>
 
 Related to jsc#SLE-22069:
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' old/yast2-security-4.4.7/package/yast2-security.spec 
new/yast2-security-4.4.8/package/yast2-security.spec
--- old/yast2-security-4.4.7/package/yast2-security.spec        2022-01-13 
14:52:22.000000000 +0100
+++ new/yast2-security-4.4.8/package/yast2-security.spec        2022-01-24 
11:04:13.000000000 +0100
@@ -17,7 +17,7 @@
 
 
 Name:           yast2-security
-Version:        4.4.7
+Version:        4.4.8
 Release:        0
 Group:          System/YaST
 License:        GPL-2.0-only
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' 
old/yast2-security-4.4.7/src/lib/y2security/autoinst/lsm_config_reader.rb 
new/yast2-security-4.4.8/src/lib/y2security/autoinst/lsm_config_reader.rb
--- old/yast2-security-4.4.7/src/lib/y2security/autoinst/lsm_config_reader.rb   
2022-01-13 14:52:22.000000000 +0100
+++ new/yast2-security-4.4.8/src/lib/y2security/autoinst/lsm_config_reader.rb   
2022-01-24 11:04:13.000000000 +0100
@@ -50,14 +50,16 @@
     private
 
       def configure_supported_modules
-        [:selinux, :apparmor].each do |id|
+        [:selinux, :apparmor, :none].each do |id|
           lsm_module = config.public_send(id)
           @module_section = section.public_send(id)
           next unless module_section
 
           assign(lsm_module, :mode) if id == :selinux
-          assign(lsm_module, :configurable)
           assign(lsm_module, :selectable)
+          next if id == :none
+
+          assign(lsm_module, :configurable)
           assign(lsm_module, :patterns)
         end
       end
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' 
old/yast2-security-4.4.7/src/lib/y2security/autoinst_profile/lsm_section.rb 
new/yast2-security-4.4.8/src/lib/y2security/autoinst_profile/lsm_section.rb
--- old/yast2-security-4.4.7/src/lib/y2security/autoinst_profile/lsm_section.rb 
2022-01-13 14:52:22.000000000 +0100
+++ new/yast2-security-4.4.8/src/lib/y2security/autoinst_profile/lsm_section.rb 
2022-01-24 11:04:13.000000000 +0100
@@ -30,6 +30,9 @@
     #   <apparmor>
     #     <selectable config:type="boolean">false</selectable>
     #   </apparmor>
+    #   <none>
+    #     <selectable config:type="boolean">false</selectable>
+    #   </none>
     #   <selinux>
     #     <mode>permissive</mode>
     #     <configurable config:type="boolean">true</configurable>
@@ -42,7 +45,8 @@
           { name: :select },
           { name: :configurable },
           { name: :selinux },
-          { name: :apparmor }
+          { name: :apparmor },
+          { name: :none }
         ]
       end
 
@@ -61,7 +65,8 @@
         super
 
         @selinux = SelinuxSection.new_from_hashes(hash["selinux"], self) if 
hash["selinux"]
-        @apparmor = ApparmorSection.new_from_hashes(hash["selinux"], self) if 
hash["apparmor"]
+        @apparmor = ApparmorSection.new_from_hashes(hash["apparmor"], self) if 
hash["apparmor"]
+        @none = ApparmorSection.new_from_hashes(hash["none"], self) if 
hash["none"]
 
         nil
       end
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' 
old/yast2-security-4.4.7/test/y2security/autoinst/lsm_config_reader_test.rb 
new/yast2-security-4.4.8/test/y2security/autoinst/lsm_config_reader_test.rb
--- old/yast2-security-4.4.7/test/y2security/autoinst/lsm_config_reader_test.rb 
2022-01-13 14:52:22.000000000 +0100
+++ new/yast2-security-4.4.8/test/y2security/autoinst/lsm_config_reader_test.rb 
2022-01-24 11:04:13.000000000 +0100
@@ -33,6 +33,14 @@
           "configurable" => false,
           "selectable"   => true,
           "patterns"     => "selinux_pattern"
+        },
+        "apparmor"     => {
+          "configurable" => true,
+          "selectable"   => false,
+          "patterns"     => "apparmor_pattern"
+        },
+        "none"         => {
+          "selectable" => false
         }
       }
     }
@@ -58,6 +66,15 @@
         expect(selinux.configurable).to eql(false)
         expect(selinux.selectable).to eql(true)
         expect(selinux.needed_patterns).to eql(["selinux_pattern"])
+
+        apparmor = lsm.apparmor
+
+        expect(apparmor.configurable).to eql(true)
+        expect(apparmor.selectable).to eql(false)
+        expect(apparmor.needed_patterns).to eql(["apparmor_pattern"])
+
+        none = lsm.none
+        expect(none.selectable).to eql(false)
       end
     end
   end

commit yast2-security for openSUSE:Factory

Reply via email to