Hello community, here is the log from the commit of package kauth for openSUSE:Factory checked in at 2017-06-01 16:17:37 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/kauth (Old) and /work/SRC/openSUSE:Factory/.kauth.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "kauth" Thu Jun 1 16:17:37 2017 rev:45 rq:495021 version:5.34.0 Changes: -------- --- /work/SRC/openSUSE:Factory/kauth/kauth.changes 2017-04-30 21:17:44.736747303 +0200 +++ /work/SRC/openSUSE:Factory/.kauth.new/kauth.changes 2017-06-01 16:18:45.265400517 +0200 @@ -1,0 +2,18 @@ +Mon May 15 13:53:15 CEST 2017 - [email protected] + +- Update to 5.34.0 + * New feature release + * For more details please see: + * https://www.kde.org/announcements/kde-frameworks-5.34.0.php +- Changes since 5.33.0: + * Verify that whoever is calling us is actually who he says he is +- Remove patches, now upstream: + * verify-caller-CVE-2017-8422.patch + +------------------------------------------------------------------- +Thu May 11 05:05:08 UTC 2017 - [email protected] + +- Add verify-caller-CVE-2017-8422.patch: upstream security fix for + local privilege escalation (CVE-2017-8422) + +------------------------------------------------------------------- Old: ---- kauth-5.33.0.tar.xz New: ---- kauth-5.34.0.tar.xz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ kauth.spec ++++++ --- /var/tmp/diff_new_pack.3KKLIM/_old 2017-06-01 16:18:45.857317049 +0200 +++ /var/tmp/diff_new_pack.3KKLIM/_new 2017-06-01 16:18:45.861316485 +0200 @@ -18,9 +18,9 @@ %bcond_without lang %define lname libKF5Auth5 -%define _tar_path 5.33 +%define _tar_path 5.34 Name: kauth -Version: 5.33.0 +Version: 5.34.0 Release: 0 %define kf5_version %{version} BuildRequires: cmake >= 3.0 ++++++ kauth-5.33.0.tar.xz -> kauth-5.34.0.tar.xz ++++++ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/kauth-5.33.0/CMakeLists.txt new/kauth-5.34.0/CMakeLists.txt --- old/kauth-5.33.0/CMakeLists.txt 2017-04-01 21:28:36.000000000 +0200 +++ new/kauth-5.34.0/CMakeLists.txt 2017-05-11 09:38:15.000000000 +0200 @@ -1,11 +1,11 @@ cmake_minimum_required(VERSION 3.0) -set(KF5_VERSION "5.33.0") # handled by release scripts -set(KF5_DEP_VERSION "5.33.0") # handled by release scripts +set(KF5_VERSION "5.34.0") # handled by release scripts +set(KF5_DEP_VERSION "5.34.0") # handled by release scripts project(KAuth VERSION ${KF5_VERSION}) include(FeatureSummary) -find_package(ECM 5.33.0 NO_MODULE) +find_package(ECM 5.34.0 NO_MODULE) set_package_properties(ECM PROPERTIES TYPE REQUIRED DESCRIPTION "Extra CMake Modules." URL "https://projects.kde.org/projects/kdesupport/extra-cmake-modules";) feature_summary(WHAT REQUIRED_PACKAGES_NOT_FOUND FATAL_ON_MISSING_REQUIRED_PACKAGES) diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/kauth-5.33.0/po/bg/kauth5_qt.po new/kauth-5.34.0/po/bg/kauth5_qt.po --- old/kauth-5.33.0/po/bg/kauth5_qt.po 2017-04-01 21:28:36.000000000 +0200 +++ new/kauth-5.34.0/po/bg/kauth5_qt.po 2017-05-11 09:38:15.000000000 +0200 @@ -1,8 +1,5 @@ -# translation of kdelibs4.po to Bulgarian -# Bulgarian translation of KDE. -# This file is licensed under the GPL. -# -# $Id:$ +# Copyright (C) YEAR This_file_is_part_of_KDE +# This file is distributed under the same license as the PACKAGE package. # # Zlatko Popov <[email protected]>, 2006, 2007, 2008, 2009. # Yasen Pramatarov <[email protected]>, 2009, 2010, 2011, 2012, 2013. diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/kauth-5.33.0/po/ia/kauth5_qt.po new/kauth-5.34.0/po/ia/kauth5_qt.po --- old/kauth-5.33.0/po/ia/kauth5_qt.po 2017-04-01 21:28:36.000000000 +0200 +++ new/kauth-5.34.0/po/ia/kauth5_qt.po 2017-05-11 09:38:15.000000000 +0200 @@ -1,22 +1,22 @@ # Copyright (C) YEAR This_file_is_part_of_KDE # This file is distributed under the same license as the PACKAGE package. # -# g.sora <[email protected]>, 2010, 2011, 2012, 2013, 2014. +# g.sora <[email protected]>, 2010, 2011, 2012, 2013, 2014, 2017. # Giovanni Sora <[email protected]>, 2014, 2016. msgid "" msgstr "" "Project-Id-Version: \n" "Report-Msgid-Bugs-To: http://bugs.kde.org\n"; "POT-Creation-Date: 2014-03-23 01:50+0000\n" -"PO-Revision-Date: 2016-11-29 14:03+0100\n" -"Last-Translator: Giovanni Sora <[email protected]>\n" -"Language-Team: Interlingua <[email protected]>\n" +"PO-Revision-Date: 2017-04-15 09:29+0100\n" +"Last-Translator: giovanni <[email protected]>\n" +"Language-Team: Interlingua <[email protected]>\n" "Language: ia\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=n != 1;\n" -"X-Generator: Lokalize 1.5\n" +"X-Generator: Lokalize 2.0\n" "X-Qt-Contexts: true\n" #: backends/dbus/DBusHelperProxy.cpp:86 @@ -27,15 +27,15 @@ "Error de Retro-administration de DBUS: le initio de servitio %1 falleva; %2" #: backends/dbus/DBusHelperProxy.cpp:96 -#, fuzzy, qt-format -#| msgctxt "KAuth::DBusHelperProxy|" -#| msgid "DBus Backend error: connection to helper failed. %1" +#, qt-format msgctxt "KAuth::DBusHelperProxy|" msgid "" "DBus Backend error: connection to helper failed. %1\n" "(application: %2 helper: %3)" msgstr "" -"Error de Retro-administration de DBUS: le connection al adjuvante falleva.%1" +"Error de Retro-administration de DBUS: le connection al adjuvante falleva." +"%1\n" +"(applicatin: %2 adjudatnte: %3)" #: backends/dbus/DBusHelperProxy.cpp:124 #, qt-format diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/kauth-5.33.0/po/nb/kauth5_qt.po new/kauth-5.34.0/po/nb/kauth5_qt.po --- old/kauth-5.33.0/po/nb/kauth5_qt.po 2017-04-01 21:28:36.000000000 +0200 +++ new/kauth-5.34.0/po/nb/kauth5_qt.po 2017-05-11 09:38:15.000000000 +0200 @@ -35,10 +35,12 @@ #: backends/dbus/DBusHelperProxy.cpp:96 #, qt-format msgctxt "KAuth::DBusHelperProxy|" -msgid "DBus Backend error: connection to helper failed. %1" +msgid "" +"DBus Backend error: connection to helper failed. %1\n" +"(application: %2 helper: %3)" msgstr "" -#: backends/dbus/DBusHelperProxy.cpp:121 +#: backends/dbus/DBusHelperProxy.cpp:124 #, qt-format msgctxt "KAuth::DBusHelperProxy|" msgid "" @@ -56,12 +58,12 @@ msgid "Unknown execution mode chosen" msgstr "Ukjent kjøremodus valgt" -#: kauthexecutejob.cpp:140 +#: kauthexecutejob.cpp:147 msgctxt "KAuth::ExecuteJob|" msgid "Unknown status for the authentication procedure" msgstr "Ukjent status for autentiseringsprosedyren" -#: kauthexecutejob.cpp:152 +#: kauthexecutejob.cpp:159 msgctxt "KAuth::ExecuteJob|" msgid "" "The current backend only allows helper authorization, but this action does " @@ -70,7 +72,7 @@ "Den gjeldende bakgrunnsmotoren tillater bare hjelper-autorisering, men denne " "handlingen har ingen hjelper." -#: kauthexecutejob.cpp:160 kauthexecutejob.cpp:184 +#: kauthexecutejob.cpp:167 kauthexecutejob.cpp:191 msgctxt "KAuth::ExecuteJob|" msgid "The backend does not specify how to authorize" msgstr "Bakgrunnsmotoren oppgir ikke hvordan det skal autoriseres" diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/kauth-5.33.0/po/nn/kauth5_qt.po new/kauth-5.34.0/po/nn/kauth5_qt.po --- old/kauth-5.33.0/po/nn/kauth5_qt.po 2017-04-01 21:28:36.000000000 +0200 +++ new/kauth-5.34.0/po/nn/kauth5_qt.po 2017-05-11 09:38:15.000000000 +0200 @@ -32,10 +32,12 @@ #: backends/dbus/DBusHelperProxy.cpp:96 #, qt-format msgctxt "KAuth::DBusHelperProxy|" -msgid "DBus Backend error: connection to helper failed. %1" -msgstr "D-Bus-feil: Klarte ikkje kopla til hjelparen. %1" +msgid "" +"DBus Backend error: connection to helper failed. %1\n" +"(application: %2 helper: %3)" +msgstr "" -#: backends/dbus/DBusHelperProxy.cpp:121 +#: backends/dbus/DBusHelperProxy.cpp:124 #, qt-format msgctxt "KAuth::DBusHelperProxy|" msgid "" @@ -55,12 +57,12 @@ msgid "Unknown execution mode chosen" msgstr "Ukjend køyremodus vald" -#: kauthexecutejob.cpp:140 +#: kauthexecutejob.cpp:147 msgctxt "KAuth::ExecuteJob|" msgid "Unknown status for the authentication procedure" msgstr "Ukjend status for autentiseringsprosedyren" -#: kauthexecutejob.cpp:152 +#: kauthexecutejob.cpp:159 msgctxt "KAuth::ExecuteJob|" msgid "" "The current backend only allows helper authorization, but this action does " @@ -69,7 +71,7 @@ "Den gjeldande motoren tillèt berre hjelparautorisering, men denne handlinga " "har ikkje nokon hjelpar." -#: kauthexecutejob.cpp:160 kauthexecutejob.cpp:184 +#: kauthexecutejob.cpp:167 kauthexecutejob.cpp:191 msgctxt "KAuth::ExecuteJob|" msgid "The backend does not specify how to authorize" msgstr "Denne motoren definerer ikkje korleis autoriseringa skal føregå" diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/kauth-5.33.0/po/se/kauth5_qt.po new/kauth-5.34.0/po/se/kauth5_qt.po --- old/kauth-5.33.0/po/se/kauth5_qt.po 2017-04-01 21:28:36.000000000 +0200 +++ new/kauth-5.34.0/po/se/kauth5_qt.po 2017-05-11 09:38:15.000000000 +0200 @@ -29,10 +29,12 @@ #: backends/dbus/DBusHelperProxy.cpp:96 #, qt-format msgctxt "KAuth::DBusHelperProxy|" -msgid "DBus Backend error: connection to helper failed. %1" +msgid "" +"DBus Backend error: connection to helper failed. %1\n" +"(application: %2 helper: %3)" msgstr "" -#: backends/dbus/DBusHelperProxy.cpp:121 +#: backends/dbus/DBusHelperProxy.cpp:124 #, qt-format msgctxt "KAuth::DBusHelperProxy|" msgid "" @@ -50,19 +52,19 @@ msgid "Unknown execution mode chosen" msgstr "" -#: kauthexecutejob.cpp:140 +#: kauthexecutejob.cpp:147 msgctxt "KAuth::ExecuteJob|" msgid "Unknown status for the authentication procedure" msgstr "" -#: kauthexecutejob.cpp:152 +#: kauthexecutejob.cpp:159 msgctxt "KAuth::ExecuteJob|" msgid "" "The current backend only allows helper authorization, but this action does " "not have a helper." msgstr "" -#: kauthexecutejob.cpp:160 kauthexecutejob.cpp:184 +#: kauthexecutejob.cpp:167 kauthexecutejob.cpp:191 msgctxt "KAuth::ExecuteJob|" msgid "The backend does not specify how to authorize" msgstr "" diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/kauth-5.33.0/po/sr/kauth5_qt.po new/kauth-5.34.0/po/sr/kauth5_qt.po --- old/kauth-5.33.0/po/sr/kauth5_qt.po 2017-04-01 21:28:36.000000000 +0200 +++ new/kauth-5.34.0/po/sr/kauth5_qt.po 2017-05-11 09:38:15.000000000 +0200 @@ -1,14 +1,14 @@ # Translation of kauth5_qt.po into Serbian. # Marko Rosic <[email protected]>, 2003. # Toplica Tanaskovic <[email protected]>, 2003, 2004, 2005. -# Chusslove Illich <[email protected]>, 2003, 2004, 2005, 2006, 2007, 2008, 2009, 2010, 2011, 2012, 2013, 2014, 2015, 2016. +# Chusslove Illich <[email protected]>, 2003, 2004, 2005, 2006, 2007, 2008, 2009, 2010, 2011, 2012, 2013, 2014, 2015, 2016, 2017. # Dalibor Djuric <[email protected]>, 2009, 2010, 2011. msgid "" msgstr "" "Project-Id-Version: kauth5_qt\n" "Report-Msgid-Bugs-To: http://bugs.kde.org\n"; "POT-Creation-Date: 2014-03-23 01:50+0000\n" -"PO-Revision-Date: 2016-11-28 01:32+0100\n" +"PO-Revision-Date: 2017-04-07 00:51+0200\n" "Last-Translator: Chusslove Illich <[email protected]>\n" "Language-Team: Serbian <[email protected]>\n" "Language: sr\n" @@ -30,14 +30,14 @@ msgstr "Грешка д‑бус позадине: покретање сервиса %1 пропало: %2" #: backends/dbus/DBusHelperProxy.cpp:96 -#, fuzzy, qt-format -#| msgctxt "KAuth::DBusHelperProxy|" -#| msgid "DBus Backend error: connection to helper failed. %1" +#, qt-format msgctxt "KAuth::DBusHelperProxy|" msgid "" "DBus Backend error: connection to helper failed. %1\n" "(application: %2 helper: %3)" -msgstr "Грешка д‑бус позадине: пропала веза са помоћником. %1" +msgstr "" +"Грешка д‑бус позадине: пропала веза са помоћником. %1\n" +"(програм: %2 помоћник: %3)" #: backends/dbus/DBusHelperProxy.cpp:124 #, qt-format diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/kauth-5.33.0/po/sr@ijekavian/kauth5_qt.po new/kauth-5.34.0/po/sr@ijekavian/kauth5_qt.po --- old/kauth-5.33.0/po/sr@ijekavian/kauth5_qt.po 2017-04-01 21:28:36.000000000 +0200 +++ new/kauth-5.34.0/po/sr@ijekavian/kauth5_qt.po 2017-05-11 09:38:15.000000000 +0200 @@ -1,14 +1,14 @@ # Translation of kauth5_qt.po into Serbian. # Marko Rosic <[email protected]>, 2003. # Toplica Tanaskovic <[email protected]>, 2003, 2004, 2005. -# Chusslove Illich <[email protected]>, 2003, 2004, 2005, 2006, 2007, 2008, 2009, 2010, 2011, 2012, 2013, 2014, 2015, 2016. +# Chusslove Illich <[email protected]>, 2003, 2004, 2005, 2006, 2007, 2008, 2009, 2010, 2011, 2012, 2013, 2014, 2015, 2016, 2017. # Dalibor Djuric <[email protected]>, 2009, 2010, 2011. msgid "" msgstr "" "Project-Id-Version: kauth5_qt\n" "Report-Msgid-Bugs-To: http://bugs.kde.org\n"; "POT-Creation-Date: 2014-03-23 01:50+0000\n" -"PO-Revision-Date: 2016-11-28 01:32+0100\n" +"PO-Revision-Date: 2017-04-07 00:51+0200\n" "Last-Translator: Chusslove Illich <[email protected]>\n" "Language-Team: Serbian <[email protected]>\n" "Language: sr@ijekavian\n" @@ -29,14 +29,14 @@ msgstr "Грешка д‑бус позадине: покретање сервиса %1 пропало: %2" #: backends/dbus/DBusHelperProxy.cpp:96 -#, fuzzy, qt-format -#| msgctxt "KAuth::DBusHelperProxy|" -#| msgid "DBus Backend error: connection to helper failed. %1" +#, qt-format msgctxt "KAuth::DBusHelperProxy|" msgid "" "DBus Backend error: connection to helper failed. %1\n" "(application: %2 helper: %3)" -msgstr "Грешка д‑бус позадине: пропала веза са помоћником. %1" +msgstr "" +"Грешка д‑бус позадине: пропала веза са помоћником. %1\n" +"(програм: %2 помоћник: %3)" #: backends/dbus/DBusHelperProxy.cpp:124 #, qt-format diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/kauth-5.33.0/po/sr@ijekavianlatin/kauth5_qt.po new/kauth-5.34.0/po/sr@ijekavianlatin/kauth5_qt.po --- old/kauth-5.33.0/po/sr@ijekavianlatin/kauth5_qt.po 2017-04-01 21:28:36.000000000 +0200 +++ new/kauth-5.34.0/po/sr@ijekavianlatin/kauth5_qt.po 2017-05-11 09:38:15.000000000 +0200 @@ -1,14 +1,14 @@ # Translation of kauth5_qt.po into Serbian. # Marko Rosic <[email protected]>, 2003. # Toplica Tanaskovic <[email protected]>, 2003, 2004, 2005. -# Chusslove Illich <[email protected]>, 2003, 2004, 2005, 2006, 2007, 2008, 2009, 2010, 2011, 2012, 2013, 2014, 2015, 2016. +# Chusslove Illich <[email protected]>, 2003, 2004, 2005, 2006, 2007, 2008, 2009, 2010, 2011, 2012, 2013, 2014, 2015, 2016, 2017. # Dalibor Djuric <[email protected]>, 2009, 2010, 2011. msgid "" msgstr "" "Project-Id-Version: kauth5_qt\n" "Report-Msgid-Bugs-To: http://bugs.kde.org\n"; "POT-Creation-Date: 2014-03-23 01:50+0000\n" -"PO-Revision-Date: 2016-11-28 01:32+0100\n" +"PO-Revision-Date: 2017-04-07 00:51+0200\n" "Last-Translator: Chusslove Illich <[email protected]>\n" "Language-Team: Serbian <[email protected]>\n" "Language: sr@ijekavianlatin\n" @@ -29,14 +29,14 @@ msgstr "Greška D‑Bus pozadine: pokretanje servisa %1 propalo: %2" #: backends/dbus/DBusHelperProxy.cpp:96 -#, fuzzy, qt-format -#| msgctxt "KAuth::DBusHelperProxy|" -#| msgid "DBus Backend error: connection to helper failed. %1" +#, qt-format msgctxt "KAuth::DBusHelperProxy|" msgid "" "DBus Backend error: connection to helper failed. %1\n" "(application: %2 helper: %3)" -msgstr "Greška D‑Bus pozadine: propala veza sa pomoćnikom. %1" +msgstr "" +"Greška D‑Bus pozadine: propala veza sa pomoćnikom. %1\n" +"(program: %2 pomoćnik: %3)" #: backends/dbus/DBusHelperProxy.cpp:124 #, qt-format diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/kauth-5.33.0/po/sr@latin/kauth5_qt.po new/kauth-5.34.0/po/sr@latin/kauth5_qt.po --- old/kauth-5.33.0/po/sr@latin/kauth5_qt.po 2017-04-01 21:28:36.000000000 +0200 +++ new/kauth-5.34.0/po/sr@latin/kauth5_qt.po 2017-05-11 09:38:15.000000000 +0200 @@ -1,14 +1,14 @@ # Translation of kauth5_qt.po into Serbian. # Marko Rosic <[email protected]>, 2003. # Toplica Tanaskovic <[email protected]>, 2003, 2004, 2005. -# Chusslove Illich <[email protected]>, 2003, 2004, 2005, 2006, 2007, 2008, 2009, 2010, 2011, 2012, 2013, 2014, 2015, 2016. +# Chusslove Illich <[email protected]>, 2003, 2004, 2005, 2006, 2007, 2008, 2009, 2010, 2011, 2012, 2013, 2014, 2015, 2016, 2017. # Dalibor Djuric <[email protected]>, 2009, 2010, 2011. msgid "" msgstr "" "Project-Id-Version: kauth5_qt\n" "Report-Msgid-Bugs-To: http://bugs.kde.org\n"; "POT-Creation-Date: 2014-03-23 01:50+0000\n" -"PO-Revision-Date: 2016-11-28 01:32+0100\n" +"PO-Revision-Date: 2017-04-07 00:51+0200\n" "Last-Translator: Chusslove Illich <[email protected]>\n" "Language-Team: Serbian <[email protected]>\n" "Language: sr@latin\n" @@ -29,14 +29,14 @@ msgstr "Greška D‑Bus pozadine: pokretanje servisa %1 propalo: %2" #: backends/dbus/DBusHelperProxy.cpp:96 -#, fuzzy, qt-format -#| msgctxt "KAuth::DBusHelperProxy|" -#| msgid "DBus Backend error: connection to helper failed. %1" +#, qt-format msgctxt "KAuth::DBusHelperProxy|" msgid "" "DBus Backend error: connection to helper failed. %1\n" "(application: %2 helper: %3)" -msgstr "Greška D‑Bus pozadine: propala veza sa pomoćnikom. %1" +msgstr "" +"Greška D‑Bus pozadine: propala veza sa pomoćnikom. %1\n" +"(program: %2 pomoćnik: %3)" #: backends/dbus/DBusHelperProxy.cpp:124 #, qt-format diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/kauth-5.33.0/po/uk/kauth5_qt.po new/kauth-5.34.0/po/uk/kauth5_qt.po --- old/kauth-5.33.0/po/uk/kauth5_qt.po 2017-04-01 21:28:36.000000000 +0200 +++ new/kauth-5.34.0/po/uk/kauth5_qt.po 2017-05-11 09:38:15.000000000 +0200 @@ -1,5 +1,5 @@ # Translation of kauth5_qt.po to Ukrainian -# Copyright (C) 2014-2016 This_file_is_part_of_KDE +# Copyright (C) 2014-2017 This_file_is_part_of_KDE # This file is distributed under the license LGPL version 2.1 or # version 3 or later versions approved by the membership of KDE e.V. # diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/kauth-5.33.0/src/AuthBackend.cpp new/kauth-5.34.0/src/AuthBackend.cpp --- old/kauth-5.33.0/src/AuthBackend.cpp 2017-04-01 21:28:36.000000000 +0200 +++ new/kauth-5.34.0/src/AuthBackend.cpp 2017-05-11 09:38:15.000000000 +0200 @@ -54,6 +54,11 @@ d->capabilities = capabilities; } +AuthBackend::ExtraCallerIDVerificationMethod AuthBackend::extraCallerIDVerificationMethod() const +{ + return NoExtraCallerIDVerificationMethod; +} + bool AuthBackend::actionExists(const QString &action) { Q_UNUSED(action); diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/kauth-5.33.0/src/AuthBackend.h new/kauth-5.34.0/src/AuthBackend.h --- old/kauth-5.33.0/src/AuthBackend.h 2017-04-01 21:28:36.000000000 +0200 +++ new/kauth-5.34.0/src/AuthBackend.h 2017-05-11 09:38:15.000000000 +0200 @@ -43,6 +43,12 @@ }; Q_DECLARE_FLAGS(Capabilities, Capability) + enum ExtraCallerIDVerificationMethod { + NoExtraCallerIDVerificationMethod, + VerifyAgainstDBusServiceName, + VerifyAgainstDBusServicePid, + }; + AuthBackend(); virtual ~AuthBackend(); virtual void setupAction(const QString &action) = 0; @@ -50,6 +56,7 @@ virtual Action::AuthStatus authorizeAction(const QString &action) = 0; virtual Action::AuthStatus actionStatus(const QString &action) = 0; virtual QByteArray callerID() const = 0; + virtual ExtraCallerIDVerificationMethod extraCallerIDVerificationMethod() const; virtual bool isCallerAuthorized(const QString &action, QByteArray callerID) = 0; virtual bool actionExists(const QString &action); diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/kauth-5.33.0/src/backends/dbus/DBusHelperProxy.cpp new/kauth-5.34.0/src/backends/dbus/DBusHelperProxy.cpp --- old/kauth-5.33.0/src/backends/dbus/DBusHelperProxy.cpp 2017-04-01 21:28:36.000000000 +0200 +++ new/kauth-5.34.0/src/backends/dbus/DBusHelperProxy.cpp 2017-05-11 09:38:15.000000000 +0200 @@ -235,6 +235,29 @@ return m_stopRequest; } +bool DBusHelperProxy::isCallerAuthorized(const QString &action, const QByteArray &callerID) +{ + // Check the caller is really who it says it is + switch (BackendsManager::authBackend()->extraCallerIDVerificationMethod()) { + case AuthBackend::NoExtraCallerIDVerificationMethod: + break; + + case AuthBackend::VerifyAgainstDBusServiceName: + if (message().service().toUtf8() != callerID) { + return false; + } + break; + + case AuthBackend::VerifyAgainstDBusServicePid: + if (connection().interface()->servicePid(message().service()).value() != callerID.toUInt()) { + return false; + } + break; + } + + return BackendsManager::authBackend()->isCallerAuthorized(action, callerID); +} + QByteArray DBusHelperProxy::performAction(const QString &action, const QByteArray &callerID, QByteArray arguments) { if (!responder) { @@ -259,7 +282,7 @@ QTimer *timer = responder->property("__KAuth_Helper_Shutdown_Timer").value<QTimer *>(); timer->stop(); - if (BackendsManager::authBackend()->isCallerAuthorized(action, callerID)) { + if (isCallerAuthorized(action, callerID)) { QString slotname = action; if (slotname.startsWith(m_name + QLatin1Char('.'))) { slotname = slotname.right(slotname.length() - m_name.length() - 1); @@ -301,7 +324,7 @@ QTimer *timer = responder->property("__KAuth_Helper_Shutdown_Timer").value<QTimer *>(); timer->stop(); - if (BackendsManager::authBackend()->isCallerAuthorized(action, callerID)) { + if (isCallerAuthorized(action, callerID)) { retVal = static_cast<uint>(Action::AuthorizedStatus); } else { retVal = static_cast<uint>(Action::DeniedStatus); diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/kauth-5.33.0/src/backends/dbus/DBusHelperProxy.h new/kauth-5.34.0/src/backends/dbus/DBusHelperProxy.h --- old/kauth-5.33.0/src/backends/dbus/DBusHelperProxy.h 2017-04-01 21:28:36.000000000 +0200 +++ new/kauth-5.34.0/src/backends/dbus/DBusHelperProxy.h 2017-05-11 09:38:15.000000000 +0200 @@ -25,12 +25,13 @@ #include "kauthactionreply.h" #include <QDBusConnection> +#include <QDBusContext> #include <QVariant> namespace KAuth { -class DBusHelperProxy : public HelperProxy +class DBusHelperProxy : public HelperProxy, protected QDBusContext { Q_OBJECT Q_PLUGIN_METADATA(IID "org.kde.DBusHelperProxy") @@ -79,6 +80,9 @@ private Q_SLOTS: void remoteSignalReceived(int type, const QString &action, QByteArray blob); + +private: + bool isCallerAuthorized(const QString &action, const QByteArray &callerID); }; } // namespace Auth diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/kauth-5.33.0/src/backends/policykit/PolicyKitBackend.cpp new/kauth-5.34.0/src/backends/policykit/PolicyKitBackend.cpp --- old/kauth-5.33.0/src/backends/policykit/PolicyKitBackend.cpp 2017-04-01 21:28:36.000000000 +0200 +++ new/kauth-5.34.0/src/backends/policykit/PolicyKitBackend.cpp 2017-05-11 09:38:15.000000000 +0200 @@ -78,6 +78,11 @@ return a; } +AuthBackend::ExtraCallerIDVerificationMethod Polkit1Backend::extraCallerIDVerificationMethod() const +{ + return VerifyAgainstDBusServicePid; +} + bool PolicyKitBackend::isCallerAuthorized(const QString &action, QByteArray callerID) { QDataStream s(&callerID, QIODevice::ReadOnly); diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/kauth-5.33.0/src/backends/policykit/PolicyKitBackend.h new/kauth-5.34.0/src/backends/policykit/PolicyKitBackend.h --- old/kauth-5.33.0/src/backends/policykit/PolicyKitBackend.h 2017-04-01 21:28:36.000000000 +0200 +++ new/kauth-5.34.0/src/backends/policykit/PolicyKitBackend.h 2017-05-11 09:38:15.000000000 +0200 @@ -40,6 +40,7 @@ virtual Action::AuthStatus authorizeAction(const QString &); virtual Action::AuthStatus actionStatus(const QString &); virtual QByteArray callerID() const; + ExtraCallerIDVerificationMethod extraCallerIDVerificationMethod() const Q_DECL_OVERRIDE; virtual bool isCallerAuthorized(const QString &action, QByteArray callerID); private Q_SLOTS: diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/kauth-5.33.0/src/backends/polkit-1/Polkit1Backend.cpp new/kauth-5.34.0/src/backends/polkit-1/Polkit1Backend.cpp --- old/kauth-5.33.0/src/backends/polkit-1/Polkit1Backend.cpp 2017-04-01 21:28:36.000000000 +0200 +++ new/kauth-5.34.0/src/backends/polkit-1/Polkit1Backend.cpp 2017-05-11 09:38:15.000000000 +0200 @@ -162,6 +162,11 @@ return QDBusConnection::systemBus().baseService().toUtf8(); } +AuthBackend::ExtraCallerIDVerificationMethod Polkit1Backend::extraCallerIDVerificationMethod() const +{ + return VerifyAgainstDBusServiceName; +} + bool Polkit1Backend::isCallerAuthorized(const QString &action, QByteArray callerID) { PolkitQt1::SystemBusNameSubject subject(QString::fromUtf8(callerID)); diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/kauth-5.33.0/src/backends/polkit-1/Polkit1Backend.h new/kauth-5.34.0/src/backends/polkit-1/Polkit1Backend.h --- old/kauth-5.33.0/src/backends/polkit-1/Polkit1Backend.h 2017-04-01 21:28:36.000000000 +0200 +++ new/kauth-5.34.0/src/backends/polkit-1/Polkit1Backend.h 2017-05-11 09:38:15.000000000 +0200 @@ -49,6 +49,7 @@ Action::AuthStatus authorizeAction(const QString &) Q_DECL_OVERRIDE; Action::AuthStatus actionStatus(const QString &) Q_DECL_OVERRIDE; QByteArray callerID() const Q_DECL_OVERRIDE; + ExtraCallerIDVerificationMethod extraCallerIDVerificationMethod() const Q_DECL_OVERRIDE; bool isCallerAuthorized(const QString &action, QByteArray callerID) Q_DECL_OVERRIDE; bool actionExists(const QString &action) Q_DECL_OVERRIDE;
