commit mailman for openSUSE:Factory

root Wed, 26 Dec 2018 15:30:57 -0800

Hello community,

here is the log from the commit of package mailman for openSUSE:Factory checked 
in at 2018-12-27 00:30:03
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/mailman (Old)
 and      /work/SRC/openSUSE:Factory/.mailman.new.28833 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++


Package is "mailman"

Thu Dec 27 00:30:03 2018 rev:48 rq:660941 version:2.1.29

Changes:
--------
--- /work/SRC/openSUSE:Factory/mailman/mailman.changes  2018-12-12 
17:29:13.698820367 +0100
+++ /work/SRC/openSUSE:Factory/.mailman.new.28833/mailman.changes       
2018-12-27 00:30:05.115628971 +0100
@@ -1,0 +2,6 @@
+Thu Dec 20 16:31:25 CET 2018 - mc...@suse.com
+
+- Add mailman-update-cfg to avoid user mailman writing to
+  /usr/lib directories (compiled Python files).
+
+-------------------------------------------------------------------

New:
----
  mailman-update-cfg

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Other differences:
------------------
++++++ mailman.spec ++++++
--- /var/tmp/diff_new_pack.3grEzN/_old  2018-12-27 00:30:05.907628322 +0100
+++ /var/tmp/diff_new_pack.3grEzN/_new  2018-12-27 00:30:05.911628319 +0100
@@ -55,6 +55,7 @@
 Source14:       %{name}.keyring
 Source15:       systemd-units.tar.xz
 Source16:       mailman.service
+Source17:       mailman-update-cfg
 Patch1:         mailman-wrapper.patch
 Patch3:         mailman-2.1.14-python.dif
 Patch5:         mailman-2.1.14-editarch.patch
@@ -168,6 +169,11 @@
 install -m 755 %{SOURCE4} %{buildroot}%{mmdir}/bin/
 install -m 644 %{SOURCE8} %{buildroot}%{mmdir}/sgidlist
 
+# Originally from Fedora, where it is needed because of SELinux, that is
+# not the issue here, but still we should not write to the /usr/lib
+# unnecessarily
+install -m 755 %{SOURCE17} %{buildroot}%{mmdir}/bin/
+
 # Move configuration files to proper location
 mv -v %{buildroot}%{mmdir}/Mailman/mm_cfg.py* %{buildroot}%{configdir}/
 ln -srf %{buildroot}%{configdir}/mm_cfg.py* %{buildroot}%{mmdir}/Mailman/


++++++ mailman-update-cfg ++++++
#!/usr/bin/python2

# This script is needed, when SELinux is enabled:
# mailman_mail_t context cannot write to the directory
# /usr/lib/mailman/Mailman so when you change mm_cfg.py, 
# mailman cannot create the .pyc
#
# This script is called in the init script, which is run in unconfined_t
# so the .pyc is created and the AVC denial is avoided. (bz#481446)

import py_compile

py_compile.compile("/usr/lib/mailman/Mailman/mm_cfg.py")

commit mailman for openSUSE:Factory

Reply via email to