The NetBSD Project

CVS log for pkgsrc/mk/unprivileged.mk

[BACK] Up to [cvs.NetBSD.org] / pkgsrc / mk

Request diff between arbitrary revisions


Default branch: MAIN


Revision 1.22 / (download) - annotate - [select for diffs], Sat Apr 21 19:29:47 2012 UTC (6 years, 11 months ago) by cheusov
Branch: MAIN
CVS Tags: pkgsrc-2018Q4-base, pkgsrc-2018Q4, pkgsrc-2018Q3-base, pkgsrc-2018Q3, pkgsrc-2018Q2-base, pkgsrc-2018Q2, pkgsrc-2018Q1-base, pkgsrc-2018Q1, pkgsrc-2017Q4-base, pkgsrc-2017Q4, pkgsrc-2017Q3-base, pkgsrc-2017Q3, pkgsrc-2017Q2-base, pkgsrc-2017Q2, pkgsrc-2017Q1-base, pkgsrc-2017Q1, pkgsrc-2016Q4-base, pkgsrc-2016Q4, pkgsrc-2016Q3-base, pkgsrc-2016Q3, pkgsrc-2016Q2-base, pkgsrc-2016Q2, pkgsrc-2016Q1-base, pkgsrc-2016Q1, pkgsrc-2015Q4-base, pkgsrc-2015Q4, pkgsrc-2015Q3-base, pkgsrc-2015Q3, pkgsrc-2015Q2-base, pkgsrc-2015Q2, pkgsrc-2015Q1-base, pkgsrc-2015Q1, pkgsrc-2014Q4-base, pkgsrc-2014Q4, pkgsrc-2014Q3-base, pkgsrc-2014Q3, pkgsrc-2014Q2-base, pkgsrc-2014Q2, pkgsrc-2014Q1-base, pkgsrc-2014Q1, pkgsrc-2013Q4-base, pkgsrc-2013Q4, pkgsrc-2013Q3-base, pkgsrc-2013Q3, pkgsrc-2013Q2-base, pkgsrc-2013Q2, pkgsrc-2013Q1-base, pkgsrc-2013Q1, pkgsrc-2012Q4-base, pkgsrc-2012Q4, pkgsrc-2012Q3-base, pkgsrc-2012Q3, pkgsrc-2012Q2-base, pkgsrc-2012Q2, pkgsrc-, HEAD
Changes since 1.21: +1 -5 lines
Diff to previous 1.21 (colored)


Revert the patch commited in PR 36618. It creates more problems
than it solves on Interix.

Revision 1.21 / (download) - annotate - [select for diffs], Thu Jul 8 04:57:36 2010 UTC (8 years, 8 months ago) by dholland
Branch: MAIN
CVS Tags: pkgsrc-2012Q1-base, pkgsrc-2012Q1, pkgsrc-2011Q4-base, pkgsrc-2011Q4, pkgsrc-2011Q3-base, pkgsrc-2011Q3, pkgsrc-2011Q2-base, pkgsrc-2011Q2, pkgsrc-2011Q1-base, pkgsrc-2011Q1, pkgsrc-2010Q4-base, pkgsrc-2010Q4, pkgsrc-2010Q3-base, pkgsrc-2010Q3
Changes since 1.20: +2 -1 lines
Diff to previous 1.20 (colored)

Begin cleanup of setgid game infrastructure.

 * Introduce USE_GAMESGROUP, which causes the games user and group to
be made available.

 * Retain SETGIDGAME as an alias for USE_GAMESGROUP. Describe it as
deprecated.

 * Always define GAMES_USER, GAMES_GROUP, GAMEMODE, GAMEDIRMODE, and
GAMEDATAMODE, regardless of whether USE_GAMESGROUP is turned on or not.

 * Define these variables in defaults/mk.conf instead of separately in
every platform/*.mk file. The definitions used to be the same for each
of these platforms anyway, except for some where they were randomly
missing or commented out for no clear reason, leading to broken game
packages.

 * Handle all these variables properly when unprivileged.

 * Update the comments/documentation for these variables.

 * Describe GAMEOWN and GAMEGRP as deprecated. These need to be
retained as aliases for GAMES_USER and GAMES_GROUP respectively for
supporting packages that use bsd.*.mk but should otherwise not be
used.

 * Add GAMEDATA_PERMS and GAMEDIR_PERMS using GAMEDATAMODE and
GAMEDIRMODE respectively.

 * Fix a bug I noticed that was improperly mixing the "games" group
and "games" user.

Things this does *not* do:

 - get rid of GAMES_USER, for which there should ultimately be no need.

 - move the declaration/documentation/default value of USE_GAMESGROUP
to a suitable place. (It is currently where SETGIDGAME was, which is
suboptimal.)

 - touch any of the games, all of which need updating with at least
s/SETGIDGAME/USE_GAMESGROUP/ and probably more.

 - update the guide to explain how to handle games properly.

Also, it would be nice if using GAMES_GROUP without setting
USE_GAMESGROUP=yes caused an error but as far as I know there isn't
any particularly good way to arrange this right now.

Note that these changes may alter the build/install behavior of broken
game packages, e.g. some may silently become setgid when they weren't
before or things like that. If you run into any of this file a PR.

While one might arguably bump the PKGREVISION of all games or other
packages using any of these variables as a precaution, that seems like
a bad idea. Instead, I think I will be bumping each game once it
itself has been fixed up to do everything the right way.

Revision 1.20 / (download) - annotate - [select for diffs], Sun Feb 28 19:57:52 2010 UTC (9 years ago) by tnn
Branch: MAIN
CVS Tags: pkgsrc-2010Q2-base, pkgsrc-2010Q2, pkgsrc-2010Q1-base, pkgsrc-2010Q1
Changes since 1.19: +2 -1 lines
Diff to previous 1.19 (colored)

override GAMEMODE as well

Revision 1.19 / (download) - annotate - [select for diffs], Sun Feb 28 19:33:00 2010 UTC (9 years ago) by tnn
Branch: MAIN
Changes since 1.18: +8 -10 lines
Diff to previous 1.18 (colored)

Fix GAMES_USER handling in unprivileged mode.
ok joerg

Revision 1.18 / (download) - annotate - [select for diffs], Wed Dec 30 12:21:15 2009 UTC (9 years, 2 months ago) by abs
Branch: MAIN
CVS Tags: pkgsrc-2009Q4-base, pkgsrc-2009Q4
Changes since 1.17: +5 -1 lines
Diff to previous 1.17 (colored)

pkg PR/36618 - fix UNPRIVILEGED_GROUP definition for Interix

Revision 1.17 / (download) - annotate - [select for diffs], Thu Nov 27 19:28:01 2008 UTC (10 years, 3 months ago) by rillig
Branch: MAIN
CVS Tags: pkgsrc-2009Q3-base, pkgsrc-2009Q3, pkgsrc-2009Q2-base, pkgsrc-2009Q2, pkgsrc-2009Q1-base, pkgsrc-2009Q1, pkgsrc-2008Q4-base, pkgsrc-2008Q4
Changes since 1.16: +2 -2 lines
Diff to previous 1.16 (colored)

typo

Revision 1.16 / (download) - annotate - [select for diffs], Tue Mar 4 06:45:33 2008 UTC (11 years ago) by jlam
Branch: MAIN
CVS Tags: pkgsrc-2008Q3-base, pkgsrc-2008Q3, pkgsrc-2008Q2-base, pkgsrc-2008Q2, pkgsrc-2008Q1-base, pkgsrc-2008Q1, cwrapper, cube-native-xorg-base, cube-native-xorg
Changes since 1.15: +10 -1 lines
Diff to previous 1.15 (colored)

+ Conditionally add GAMES_USER and GAMES_GROUP to the platform *.mk
  files.  These variables are currently usable if ${SETGIDGAME} == yes.
  These variables should be used when describing ownership of files
  and directories to the pkginstall framework, e.g.

	SPECIAL_PERMS=	bin/foogame ${GAMES_USER} ${GAMES_GROUP} 2555

+ Rename SETGID_GAME_PERMS to SETGID_GAMES_PERMS because the default
  group name is "games".

+ Define SETGID_GAMES_PERMS in terms of GAMES_USER and GAMES_GROUP so
  that these names are protected from the normal flow of unprivileged.mk.
  This fixes the +INSTALL scripts in "user-destdir" packages to
  correctly refer to the games:games instead of the user:group of the
  user that built the packages.

Revision 1.15 / (download) - annotate - [select for diffs], Fri Feb 1 08:54:53 2008 UTC (11 years, 1 month ago) by rillig
Branch: MAIN
Changes since 1.14: +10 -1 lines
Diff to previous 1.14 (colored)

Documented PRIVILEGED_STAGES.

Revision 1.14 / (download) - annotate - [select for diffs], Sat Oct 20 06:57:17 2007 UTC (11 years, 5 months ago) by dsainty
Branch: MAIN
CVS Tags: pkgsrc-2007Q4-base, pkgsrc-2007Q4
Changes since 1.13: +19 -3 lines
Diff to previous 1.13 (colored)

Allow a package to use its custom group so long as the group is in the
(new) UNPRIVILEGED_GROUPS list.

In addition, the value of UNPRIVILEGED_GROUPS is defaulted to all the
groups the installing user is a member of, in a similar mold to
UNPRIVILEGED_GROUP and UNPRIVILEGED_USER.

This allows non-root installations of packages that have special group
requirements but no special user requirements, so long as the installation
user has been given the necessary group membership.

Raised on tech-pkg @ 2007/10/14.

Revision 1.13 / (download) - annotate - [select for diffs], Tue Sep 4 08:42:30 2007 UTC (11 years, 6 months ago) by rillig
Branch: MAIN
CVS Tags: pkgsrc-2007Q3-base, pkgsrc-2007Q3
Changes since 1.12: +86 -14 lines
Diff to previous 1.12 (colored)

Documented all the variables that are used or defined by this file.
Added lots of XXX tags for things that should be discussed further.

Revision 1.12 / (download) - annotate - [select for diffs], Wed Jul 4 20:54:48 2007 UTC (11 years, 8 months ago) by jlam
Branch: MAIN
Changes since 1.11: +36 -5 lines
Diff to previous 1.11 (colored)

Make it easier to build and install packages "unprivileged", where
the owner of all installed files is a non-root user.  This change
affects most packages that require special users or groups by making
them use the specified unprivileged user and group instead.

(1) Add two new variables PKG_GROUPS_VARS and PKG_USERS_VARS to
    unprivileged.mk.  These two variables are lists of other bmake
    variables that define package-specific users and groups.  Packages
    that have user-settable variables for users and groups, e.g. apache
    and APACHE_{USER,GROUP}, courier-mta and COURIER_{USER,GROUP},
    etc., should list these variables in PKG_USERS_VARS and PKG_GROUPS_VARS
    so that unprivileged.mk can know to set them to ${UNPRIVILEGED_USER}
    and ${UNPRIVILEGED_GROUP}.

(2) Modify packages to use PKG_GROUPS_VARS and PKG_USERS_VARS.

Revision 1.11 / (download) - annotate - [select for diffs], Wed Jun 6 12:41:53 2007 UTC (11 years, 9 months ago) by rillig
Branch: MAIN
CVS Tags: pkgsrc-2007Q2-base, pkgsrc-2007Q2
Changes since 1.10: +3 -3 lines
Diff to previous 1.10 (colored)

Fixed indentation.

Revision 1.10 / (download) - annotate - [select for diffs], Thu Apr 19 16:52:03 2007 UTC (11 years, 11 months ago) by joerg
Branch: MAIN
Changes since 1.9: +1 -5 lines
Diff to previous 1.9 (colored)

Drop NO_MTREE by making it the default. Introduce USE_MTREE to get the
old behaviour back. Discussed on tech-pkg@.

Revision 1.9 / (download) - annotate - [select for diffs], Sun Nov 5 15:10:08 2006 UTC (12 years, 4 months ago) by joerg
Branch: MAIN
CVS Tags: pkgsrc-2007Q1-base, pkgsrc-2007Q1, pkgsrc-2006Q4-base, pkgsrc-2006Q4, jlam-pkgviews-base, jlam-pkgviews
Changes since 1.8: +3 -3 lines
Diff to previous 1.8 (colored)

Rename _INSTALL_ROOT_USER to REAL_ROOT_USER. Use it as default for
SETUID_ROOT_PERMS.

Revision 1.8 / (download) - annotate - [select for diffs], Sun Nov 5 14:36:13 2006 UTC (12 years, 4 months ago) by joerg
Branch: MAIN
Changes since 1.7: +3 -1 lines
Diff to previous 1.7 (colored)

DOCOWN and DOCGRP should be unprivileged as well.

Revision 1.7 / (download) - annotate - [select for diffs], Sun Oct 15 16:20:34 2006 UTC (12 years, 5 months ago) by joerg
Branch: MAIN
Changes since 1.6: +3 -1 lines
Diff to previous 1.6 (colored)

Include some more magic to set ownership of packages build with
use-destdir to ${ROOT_USER}:${ROOT_GROU}. This allows us to safely
use it on all packages which don't install setuid/setgid binaries.

Revision 1.6 / (download) - annotate - [select for diffs], Mon Oct 9 12:25:44 2006 UTC (12 years, 5 months ago) by joerg
Branch: MAIN
Changes since 1.5: +8 -2 lines
Diff to previous 1.5 (colored)

Main infrastructure for DESTDIR support.

Packages may set PKG_DESTDIR_SUPPORT to either "destdir" or
"user-destdir" to flag support for this, following the same
rules as PKG_INSTALLATION_TYPES (e.g. define before first include
of bsd.prefs.mk).

The user activates it via USE_DESTDIR. When set to "yes",
packages with "user-destdir" are handled as "destdir".
The installation of the package will not go to ${LOCALBASE},
but a subdirectory of ${WRKDIR} instead. pre/post install scripts are
not run and the package is not registered either. A binary package
can be created instead to be installed normally with pkg_add.

For "user-destdir" packages, everything is run as normal user and
ownership is supposed to be correctled by pkg_create later. Since
the current pkg_install code uses pax and it doesn't allow overwriting
owners, this does not work yet.

For "destdir" packages, installation, packaging and cleaning is run as
root.

This commit does not change the handling of DEPENDS_TARGET or
bin-install to allow recursive usage.

Revision 1.5 / (download) - annotate - [select for diffs], Thu Aug 31 16:21:20 2006 UTC (12 years, 6 months ago) by rillig
Branch: MAIN
CVS Tags: pkgsrc-2006Q3-base, pkgsrc-2006Q3
Changes since 1.4: +3 -3 lines
Diff to previous 1.4 (colored)

Instead of the variables CHOWN and CHGRP, the TOOLS_PLATFORM.* variables
need to be overridden to generate tool wrappers that also work when
called with their simple names (for example chown instead of ${CHOWN}).

Revision 1.4 / (download) - annotate - [select for diffs], Sat Jul 15 20:47:43 2006 UTC (12 years, 8 months ago) by rillig
Branch: MAIN
Changes since 1.3: +16 -10 lines
Diff to previous 1.3 (colored)

Converted the header comment to the canonical form. Changed the
definitions of CHOWN and CHGRP so that they still include the command
that is skipped, which is useful when viewing the build logs.

Revision 1.3 / (download) - annotate - [select for diffs], Wed Sep 28 21:55:32 2005 UTC (13 years, 5 months ago) by rillig
Branch: MAIN
CVS Tags: pkgsrc-2006Q2-base, pkgsrc-2006Q2, pkgsrc-2006Q1-base, pkgsrc-2006Q1, pkgsrc-2005Q4-base, pkgsrc-2005Q4
Changes since 1.2: +2 -2 lines
Diff to previous 1.2 (colored)

Replaced "# defined" with "yes" in Makefile variables like GNU_CONFIGURE,
NO_BUILD, USE_LIBTOOL.

Revision 1.2 / (download) - annotate - [select for diffs], Mon Aug 22 17:13:28 2005 UTC (13 years, 7 months ago) by reed
Branch: MAIN
CVS Tags: pkgsrc-2005Q3-base, pkgsrc-2005Q3
Changes since 1.1: +5 -2 lines
Diff to previous 1.1 (colored)

Do not attempt to modify /etc/shells as a regular user.

Also set PKG_CREATE_USERGROUP with = instead of ?=.

Revision 1.1 / (download) - annotate - [select for diffs], Sun May 29 17:12:16 2005 UTC (13 years, 10 months ago) by jmmv
Branch: MAIN
CVS Tags: pkgsrc-2005Q2-base, pkgsrc-2005Q2

Simplify unprivileged builds by adding a new variable, UNPRIVILEGED, that,
when set to YES, changes multiple defaults to let this work properly.

This form allows you to request diff's between any two revisions of a file. You may select a symbolic revision name using the selection box or you may type in a numeric name using the type-in text box.




CVSweb <webmaster@jp.NetBSD.org>