OpenPKG CVS Repository
http://cvs.openpkg.org/
____________________________________________________________________________
Server: cvs.openpkg.org Name: Thomas Lotterer
Root: /v/openpkg/cvs Email: [EMAIL PROTECTED]
Module: openpkg-src Date: 19-Apr-2007 12:47:31
Branch: HEAD Handle: 2007041911472901
Modified files:
openpkg-src/openpkg HISTORY openpkg.spec
Log:
meticulously obey order when creating user, group, login shell
relationships;
AIX does not allow us to cheat and assign a nonexisting group or
nonexisting, insecure or nonexecutable shell. The shell setting can
be deferred to %post but group correction must occur before "openpkg"
setuid wrapper goes to action; sponsored by BinckBank
Summary:
Revision Changes Path
1.447 +1 -0 openpkg-src/openpkg/HISTORY
1.582 +12 -3 openpkg-src/openpkg/openpkg.spec
____________________________________________________________________________
patch -p0 <<'@@ .'
Index: openpkg-src/openpkg/HISTORY
============================================================================
$ cvs diff -u -r1.446 -r1.447 HISTORY
--- openpkg-src/openpkg/HISTORY 19 Apr 2007 10:44:18 -0000 1.446
+++ openpkg-src/openpkg/HISTORY 19 Apr 2007 10:47:29 -0000 1.447
@@ -2,6 +2,7 @@
2007
====
+20070419 meticulously obey order when creating user, group, login shell
relationships
20070418 use bootstrapped bash to prevent problems when /bin/sh is not a
bourne shell
20070417 support %l_as macro and --use_as bootstrap option to complement ar,
ld, strip handling
20070411 upgrade to cURL 7.16.2
@@ .
patch -p0 <<'@@ .'
Index: openpkg-src/openpkg/openpkg.spec
============================================================================
$ cvs diff -u -r1.581 -r1.582 openpkg.spec
--- openpkg-src/openpkg/openpkg.spec 19 Apr 2007 10:44:19 -0000 1.581
+++ openpkg-src/openpkg/openpkg.spec 19 Apr 2007 10:47:30 -0000 1.582
@@ -39,7 +39,7 @@
# o any cc(1)
# the package version/release
-%define V_openpkg 20070418
+%define V_openpkg 20070419
# the used software versions
%define V_rpm 4.2.1
@@ -1721,6 +1721,9 @@
fi
fi
+ # clear pending deferred actions
+ rm -f %{l_prefix}.pre-group-process.sh %{l_prefix}.pre-post-process.sh
>/dev/null 2>&1
+
# create the hierarchy user/group
for req in "superuser:${susr}:${suid}:${sgrp}:${sgid}" \
"management:${musr}:${muid}:${mgrp}:${mgid}" \
@@ -1805,8 +1808,8 @@
rm -f /etc/security/login.cfg.bak >/dev/null 2>&1
# defer both the setting of the primary group and
the shell,
# as they do not exist at this stage of processing.
- ( echo "chuser pgrp=\"${grp}\" shell=\"${shell}\"
\"${usr}\""
- ) >%{l_prefix}.pre-post-process.sh
+ echo "chuser pgrp=\"${grp}\" \"${usr}\""
>>%{l_prefix}.pre-group-process.sh
+ echo "chuser shell=\"${shell}\" \"${usr}\""
>>%{l_prefix}.pre-post-process.sh
;;
* )
cp $file $file.bak && \
@@ -1853,6 +1856,12 @@
fi
done
+ # optional group processing (deferred adjustment of primary group)
+ if [ -f %{l_prefix}.pre-group-process.sh ]; then
+ sh %{l_prefix}.pre-group-process.sh
+ rm -f %{l_prefix}.pre-group-process.sh
+ fi
+
# invalidate passwd and group tables from Name Service Cache Daemon to
# ensure chown/chgrp works immediately after pwconv on Linux and
Solaris
if [ -x /usr/sbin/nscd ]; then
@@ .
______________________________________________________________________
OpenPKG http://openpkg.org
CVS Repository Commit List [email protected]
