[Lunar-commits] <moonbase-other> polkit: Version bump. There have been changes in file locations with versions 0.109 and

stumbles stumbles at lunar-linux.org
Fri Jan 11 18:38:41 CET 2013


commit 59a8bce708fd35113fc472ccbd9afa8a0802cc1f
Author: stumbles <stumbles at lunar-linux.org>
Date: Fri, 11 Jan 2013 09:38:41 -0800
URL: https://github.com/lunar-linux/moonbase-other/commit/59a8bce708fd35113fc472ccbd9afa8a0802cc1f

polkit: Version bump. There have been changes in file locations with versions 0.109 and

greater, so adjusting the BUILD to reflect that (see the comments within the BUILD). Notabley
it does not use /var. Additionally, versions 0.109 require a polkitd user. Just to make sure
the old dirs/files are removed I have used the hammer.

Editing the polkit.service and getting rid of the --no-debug as it wouldn't even tell you
it wants/needs a "home". Ratler noted other distros use / and so shall we unless there
are objections.

Based on input from Ratler our pam guru, inserting an additional pam rule to its
/etc/pam.d/polkit-1.
---
  devel/polkit/BUILD   | +33/-12   
  devel/polkit/DETAILS | +7/-5     
  2 files changed, 40 insertions(+), 17 deletions(-)

--- a/devel/polkit/BUILD
+++ b/devel/polkit/BUILD
@@ -1,28 +1,49 @@
 (
 
-  OPTS+=" --disable-gtk-doc-html"  &&
+
+  OPTS+=" --disable-gtk-doc-html "  &&
+
+  if module_installed systemd ; then
+    OPTS+=" --enable-libsystemd-login"
+  fi &&
 
 # If expat is yes the make tanks on "line 5975: cd: yes/lib: No such file or directory"
   sedit "s:\$withval/:/usr/:g" configure.ac &&
 
+# Yes its a hammer but want to make sure the old polkit stuff is gone, especially when this
+# version does not use or have /var.
+  rm -rf /etc/polkit-1 &&
+  rm -rf /var/lib/polkit-1 &&
+  rm -rf /usr/libexec/polkit-agent-helper-1 &&
+  rm -rf /usr/bin/pkexec &&
+
   autoconf &&
   default_build  &&
 
-# The following notes are from the ./confiugre summary;
-#NOTE: The directory /etc/polkit-1/localauthority must be owned
-#      by root and have mode 700
-  chmod 700 /etc/polkit-1/localauthority &&
+  add_priv_user polkitd:polkitd -d / -s /bin/false &&
 
-#NOTE: The directory /var/lib/polkit-1 must be owned
-#      by root and have mode 700
-  chmod 700 /var/lib/polkit-1 &&
+  sedit "s:--no-debug::" /usr/lib/systemd/system/polkit.service &&
 
-#NOTE: The file ${exec_prefix}/libexec/polkit-agent-helper-1 must be owned
+#NOTE: The file /usr/lib/polkit-1/polkit-agent-helper-1 must be owned
 #      by root and have mode 4755 (setuid root binary)
-  chmod 4755 /usr/libexec/polkit-agent-helper-1 &&
+       chmod 4755 /usr/lib/polkit-1/polkit-agent-helper-1 &&
 
 #NOTE: The file ${exec_prefix}/bin/pkexec must be owned by root and
 #      have mode 4755 (setuid root binary)
-  chmod 4755 /usr/bin/pkexec
-
+       chmod 4755 /usr/bin/pkexec &&
+
+#NOTE: The directory ${prefix}/etc/polkit-1/rules.d must be owned
+#      by user 'polkitd' and have mode 700
+       chown polkitd:polkitd /etc/polkit-1/rules.d &&
+       chmod 700 /etc/polkit-1/rules.d &&
+
+#NOTE: The directory ${datarootdir}/polkit-1/rules.d must be owned
+#      by user 'polkitd' and have mode 700
+       chown polkitd:polkitd /usr/share/polkit-1/rules.d &&
+       chmod 700 /usr/share/polkit-1/rules.d &&
+
+  if in_depends $MODULE Linux-PAM ; then
+    sedit "4i  account            required        pam_nologin.so" /etc/pam.d/polkit-1
+  fi
+       
 ) > $C_FIFO 2>&1
--- a/devel/polkit/DETAILS
+++ b/devel/polkit/DETAILS
@@ -1,13 +1,15 @@
           MODULE=polkit
-         VERSION=0.109
+         VERSION=0.110
           SOURCE=$MODULE-$VERSION.tar.gz
       SOURCE_URL=http://www.freedesktop.org/software/$MODULE/releases
-      SOURCE_VFY=sha1:774a55ea99b6d2a0f4f730bc498a9fa9c17ea02a
+      SOURCE_VFY=sha1:022ee5a189e3fae8a68e261dac746dfcdee77add
         WEB_SITE=http://www.freedesktop.org/software/$MODULE
          ENTERED=20091226
-         UPDATED=20130108
-           SHORT="polkit"
+         UPDATED=20130111
+           SHORT="toolkit for defining and handling authorization"
 
 cat << EOF
-polkit.
+Polkit is a toolkit for defining and handling authorizations.  It is
+used for allowing unprivileged processes to speak to privileged
+processes.
 EOF




More information about the Lunar-commits mailing list