Re: [Rpm-maint] [rpm-software-management/rpm] Couple fixes in rpmdb (double free, and rpmdbCheckTerminate return code) (#92)

2016-09-21 Thread Florian Festi
Closed #92. -- You are receiving this because you commented. Reply to this email directly or view it on GitHub: https://github.com/rpm-software-management/rpm/pull/92#event-796940680___ Rpm-maint mailing list Rpm-maint@lists.rpm.org

[Rpm-maint] [PATCH 1/3] ima-plugin: Have executable configuration files signed

2016-09-21 Thread Stefan Berger
Some configuration files are executables and so they require the signature in the extended attribute. If they are not executable, they can be skipped. Examples for configuration files that are also executables are the grub files in /etc/grub.d. Signed-off-by: Stefan Berger

[Rpm-maint] [PATCH 2/3] ima-plugin: Only run the IMA plugin on package installation

2016-09-21 Thread Stefan Berger
We want to prevent that the IMA plugin applies signatures of the older version of files. So we have to check whether we are in the install (TR_ADDED) or remove (TR_REMOVED) cycle of a package. We only apply signatures in the install cycle. Signed-off-by: Stefan Berger

Re: [Rpm-maint] [PATCH 3/3] plugins: Pass rpmte to scriptlet_pre and call IMA plugin in this hook

2016-09-21 Thread Stefan Berger
Stefan Berger wrote on 09/21/2016 02:04:08 PM: > From: Stefan Berger > To: rpm-maint@lists.rpm.org > Cc: fionnuala.gun...@gmail.com, stef...@linux.vnet.ibm.com, > zo...@linux.vnet.ibm.com, Stefan Berger/Watson/IBM@IBMUS > Date:

[Rpm-maint] [PATCH 0/3] Fixes for file signatures

2016-09-21 Thread Stefan Berger
The following series of patches addresses some issues with signatures on files. In particular: - some files marked as config files are also executables and therefore need to have a signature applied - the IMA plugin may only run on package install cycle rather than the remove cycle, which

Re: [Rpm-maint] [PATCH 3/3] plugins: Pass rpmte to scriptlet_pre and call IMA plugin in this hook

2016-09-21 Thread Panu Matilainen
On 09/21/2016 09:14 PM, Stefan Berger wrote: Stefan Berger wrote on 09/21/2016 02:04:08 PM: From: Stefan Berger To: rpm-maint@lists.rpm.org Cc: fionnuala.gun...@gmail.com, stef...@linux.vnet.ibm.com, zo...@linux.vnet.ibm.com, Stefan

Re: [Rpm-maint] [PATCH 3/3] plugins: Pass rpmte to scriptlet_pre and call IMA plugin in this hook

2016-09-21 Thread Panu Matilainen
On 09/21/2016 10:21 PM, Panu Matilainen wrote: On 09/21/2016 09:14 PM, Stefan Berger wrote: Stefan Berger wrote on 09/21/2016 02:04:08 PM: From: Stefan Berger To: rpm-maint@lists.rpm.org Cc: fionnuala.gun...@gmail.com,