[pacman-dev] [PATCH 0/4] Redo path flexibility patches.
Allan McRae
allan at archlinux.org
Sun Jan 20 07:08:15 EST 2013
There was some concern about potential security implications of calling execvp
and the ability to get a root shell. Good to see this was mentioned in the six
months between the patches being sent to the mailing list and when they were
committed (passive-agressive Allan!)
All those patches are reverted (commits 4a8c2852, 993700bc, bb4d2b72, 60b192e3)
in the first patch which is not being sent. Then the pactests are refixed only
allowing full paths to the scriptlet shell and the path to ldconfig is made
configurable.
Allan McRae (4):
Revert execvp and related commits
pactest: handle non-default scriptlet shells
Remove leading / for pactest paths
Make path to ldconfig configurable
Makefile.am | 1 +
configure.ac | 16 +++++++++++++---
lib/libalpm/util.c | 17 ++++++++++-------
test/pacman/pactest.py | 8 ++++++--
test/pacman/pmdb.py | 1 +
test/pacman/pmenv.py | 1 +
test/pacman/pmfile.py | 1 +
test/pacman/pmpkg.py | 1 +
test/pacman/pmrule.py | 1 +
test/pacman/pmtest.py | 28 +++++++++-------------------
test/pacman/tests/ldconfig001.py | 2 +-
test/pacman/tests/ldconfig002.py | 2 +-
test/pacman/tests/ldconfig003.py | 2 +-
test/pacman/tests/sync700.py | 2 +-
test/pacman/util.py | 1 +
15 files changed, 49 insertions(+), 35 deletions(-)
--
1.8.1.1
More information about the pacman-dev
mailing list