From patchwork Tue Apr 5 13:47:01 2022 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 8bit X-Patchwork-Submitter: Adolf Belka X-Patchwork-Id: 5438 Return-Path: Received: from mail01.ipfire.org (mail01.haj.ipfire.org [172.28.1.202]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-384) client-signature ECDSA (P-384)) (Client CN "mail01.haj.ipfire.org", Issuer "R3" (verified OK)) by web04.haj.ipfire.org (Postfix) with ESMTPS id 4KXppz2X5fz3x1Y for ; Tue, 5 Apr 2022 13:47:07 +0000 (UTC) Received: from mail02.haj.ipfire.org (mail02.haj.ipfire.org [172.28.1.201]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-384) client-signature ECDSA (P-384)) (Client CN "mail02.haj.ipfire.org", Issuer "R3" (verified OK)) by mail01.ipfire.org (Postfix) with ESMTPS id 4KXppy3w3bz2MC; Tue, 5 Apr 2022 13:47:06 +0000 (UTC) Received: from mail02.haj.ipfire.org (localhost [127.0.0.1]) by mail02.haj.ipfire.org (Postfix) with ESMTP id 4KXppy3g53z2yT5; Tue, 5 Apr 2022 13:47:06 +0000 (UTC) Received: from mail01.ipfire.org (mail01.haj.ipfire.org [172.28.1.202]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-384) client-signature ECDSA (P-384)) (Client CN "mail01.haj.ipfire.org", Issuer "R3" (verified OK)) by mail02.haj.ipfire.org (Postfix) with ESMTPS id 4KXppx4RLfz2yLH for ; Tue, 5 Apr 2022 13:47:05 +0000 (UTC) Received: from [127.0.0.1] (localhost [127.0.0.1]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-384) server-digest SHA384) (No client certificate requested) by mail01.ipfire.org (Postfix) with ESMTPSA id 4KXppx1V90z3sh; Tue, 5 Apr 2022 13:47:05 +0000 (UTC) DKIM-Signature: v=1; a=ed25519-sha256; c=relaxed/relaxed; d=ipfire.org; s=202003ed25519; t=1649166425; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding; bh=14RvrQZTKUoAgnsRywW6nt0XJHeDIX0flQ1LOimHFSU=; b=K2dbGwFZR0cOJpL3cTbhZzSaUlrhMawqa6Rc2ytcgRU1pwaf5eYSzuqqfdp26+tC4BMhzy NirhawDA0zcQk5DA== DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ipfire.org; s=202003rsa; t=1649166425; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding; bh=14RvrQZTKUoAgnsRywW6nt0XJHeDIX0flQ1LOimHFSU=; b=Kps4AflhVWG1Ubo6GLXx1hSpDRZqDqyebMx75O58aPyiQtoZLs3dIeD49rIPq4RNWTQBjx ocfybsAB5B3xu64p/4iwBoiuSK3vZdIpW6bAVw2W3h9JjBaD37OYLyfoUAoXK6Ym1E2VTq N9uGwvQYCvjOA9xDtNTSzftaiH1Gil9J//Y3+5ghEpoC8LGb+mr+IGs8szDFiCFDkkNPJQ Pb/ZmJp6/xhmFtHUsdfbyEoqh+ypT4hzZkp4xtMCMpUKHJB9CzWdUbDGgeAvIrENUrRRBs TP6ogfSW78UfFpiGZ8MJINgGUmt+iL1ilaZ0ZkXtfjDnS/FgTxj4vmt4uJyNXQ== From: Adolf Belka To: development@lists.ipfire.org Subject: [PATCH] dbus: Update to version 1.14.0 Date: Tue, 5 Apr 2022 15:47:01 +0200 Message-Id: <20220405134701.2929407-1-adolf.belka@ipfire.org> MIME-Version: 1.0 X-BeenThere: development@lists.ipfire.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: IPFire development talk List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: development-bounces@lists.ipfire.org Sender: "Development" - Update from 1.12.20 to 1.14.0 - Update of rootfile - Changelog 1.14.x is a new stable branch, superseding 1.12.x. Summary of major changes between 1.12.x and 1.14.0 Dependencies: • dbus now requires at least a basic level of support for C99 variadic macros, as implemented in gcc >= 3, all versions of Clang, and MSVC >= 2005. In practice this requirement has existed since version 1.9.2, but it is now official. • dbus now requires a C99-compatible va_copy() macro (or a __va_copy() macro with the same behaviour), except when building for Windows using MSVC and CMake. • On Unix platforms, if getpwnam_r() and getgrnam_r() are implemented, they must be POSIX-conformant. The non-POSIX signature seen in ancient Solaris versions will no longer work. • All Windows builds now require Windows Vista or later. (Note that we do not recommend or support use of dbus on operating systems outside their vendor's security support lifetime, such as Vista.) • GLib >= 2.38 is required if full test coverage is enabled (reduced from 2.40 in dbus 1.12.x.) • Building using CMake now requires CMake 3.4. • Building documentation using CMake now requires xsltproc, Docbook DTDs (for example docbook-xml on Debian derivatives), and Docbook XSLT stylesheets (for example docbook-xsl on Debian derivatives). Using KDE's meinproc4 documentation processor is no longer supported. Build-time configuration changes: • Move CMake build system to top level, matching normal practice for CMake projects Deprecations: **Looking through these I don't believe they will cause a problem as they are deprecations and not yet removed.In the future if needed we might need to set datadir to /etc to keep the location the same as with syscondir. This won't be needed if we don't use the system.d directory for dbus policies. • Third-party software should install default dbus policies for the system bus into ${datadir}/dbus-1/system.d (this has been supported since dbus 1.10, released in August 2015). Installing default dbus policies in ${sysconfdir}/dbus-1/system.d is now considered to be deprecated. Policy files in ${sysconfdir}/dbus-1/system.d continue to be read, but this directory should only be used by system administrators wishing to override the default policies. The ${datadir} applicable to dbus is usually /usr/share and the ${sysconfdir} is usually /etc. • A similar pattern applies to the session bus policies in session.d. • The dbus-send(1) man page now documents --bus and --peer instead of the old --address synonym for --peer, which has been deprecated since the introduction of --bus and --peer in 1.7.6 • The dbus-daemon man page now has scarier warnings about and non-local TCP, which are insecure and should not be used, particularly for the standard system and session buses • DBusServer (and hence the dbus-daemon) no longer accepts usernames (login names) for the recommended EXTERNAL authentication mechanism, only numeric user IDs or the empty string. See 1.13.0 release notes for full details. New features: • On Linux 4.13 or later when built against a suitable glibc version, GetConnectionCredentials() now includes UnixGroupIDs, the effective group IDs of the initiator of the connection, taken from SO_PEERGROUPS. • On Linux 4.13 or later, now uses the SO_PEERGROUPS credentials-passing socket option to get the effective group IDs of the initiator of the connection. See 1.13.4 release notes for details. • Add a --sender option to dbus-send, which requests a name and holds it until the signal has been sent • dbus-daemon and rules can now specify a send_destination_prefix attribute, which is like a combination of send_destination and the arg0namespace keyword in match rules. See 1.13.12 release notes for more details • The dbus-daemon now filters the messages that it relays, removing header fields that it does not understand. Clients must not rely on this behaviour unless they have confirmed that they are connected to a suitable message bus implementation, for example by querying its Features property. • The dbus-daemon now emits a signal, ActivatableServicesChanged, when the list of activatable services may have changed. Support for this signal can be discovered by querying the Features property. • It is now possible to disable traditional (non-systemd) service activation at build-time (Autotools: --disable-traditional-activation, CMake: -DENABLE_TRADITIONAL_ACTIVATION=OFF). See 1.13.10 release notes for details. • The API reference manual can be built as a Qt compiled help file if qhelpgenerator(-qt5) is available. See 1.13.16 release notes for details. Miscellaneous behaviour changes: • When using the "user bus" (--enable-user-session), put the dbus-daemon in the session slice • Several environment variables set by systemd are no longer passed on to activated services • If the dbus-daemon is compiled for Linux with systemd support, it now informs systemd that it is ready for use via the sd_notify() mechanism • Tarball releases no longer contain pre-2007 changelogs and are now compressed with xz, making them around 35% smaller. Signed-off-by: Adolf Belka --- config/rootfiles/packages/dbus | 7 ++++--- lfs/dbus | 17 ++++++++++------- 2 files changed, 14 insertions(+), 10 deletions(-) diff --git a/config/rootfiles/packages/dbus b/config/rootfiles/packages/dbus index abcb6c695..82817a942 100644 --- a/config/rootfiles/packages/dbus +++ b/config/rootfiles/packages/dbus @@ -37,11 +37,10 @@ usr/bin/dbus-uuidgen #usr/lib/dbus-1.0/include #usr/lib/dbus-1.0/include/dbus #usr/lib/dbus-1.0/include/dbus/dbus-arch-deps.h -#usr/lib/libdbus-1.a #usr/lib/libdbus-1.la -usr/lib/libdbus-1.so +#usr/lib/libdbus-1.so usr/lib/libdbus-1.so.3 -usr/lib/libdbus-1.so.3.19.13 +usr/lib/libdbus-1.so.3.32.0 #usr/lib/pkgconfig/dbus-1.pc usr/libexec/dbus-daemon-launch-helper #usr/share/dbus-1 @@ -58,8 +57,10 @@ usr/share/dbus-1/system.d #usr/share/doc/dbus/examples/GetAllMatchRules.py #usr/share/doc/dbus/examples/example-session-disable-stats.conf #usr/share/doc/dbus/examples/example-system-enable-stats.conf +#usr/share/doc/dbus/examples/example-system-hardening-without-traditional-activation.conf #usr/share/doc/dbus/system-activation.txt #usr/share/xml/dbus-1 #usr/share/xml/dbus-1/busconfig.dtd +#usr/share/xml/dbus-1/catalog.xml #usr/share/xml/dbus-1/introspect.dtd var/lib/dbus diff --git a/lfs/dbus b/lfs/dbus index c854359a0..c816b2c07 100644 --- a/lfs/dbus +++ b/lfs/dbus @@ -26,15 +26,15 @@ include Config SUMMARY = D-Bus Message Bus System -VER = 1.12.20 +VER = 1.14.0 THISAPP = dbus-$(VER) -DL_FILE = $(THISAPP).tar.gz +DL_FILE = $(THISAPP).tar.xz DL_FROM = $(URL_IPFIRE) DIR_APP = $(DIR_SRC)/$(THISAPP) TARGET = $(DIR_INFO)/$(THISAPP) PROG = dbus -PAK_VER = 4 +PAK_VER = 5 DEPS = @@ -48,7 +48,7 @@ objects = $(DL_FILE) $(DL_FILE) = $(DL_FROM)/$(DL_FILE) -$(DL_FILE)_BLAKE2 = b467526e7e0281db7b8c7c178469fe006dab29ccb1ea197c02495bd297e8de766230b68ed86c4a7e05dbe09ca30ce941a15e0bf8030fe0df66c04febf0534b3b +$(DL_FILE)_BLAKE2 = ae0ebc2779e840e2d83f633029f81fba0e35969648dddce0280640dd9bee3f9508aa7fb6aef696d1c4c56d40f91b754941f847525afaee5cc3170ad23a7eddbf install : $(TARGET) @@ -81,9 +81,12 @@ $(subst %,%_BLAKE2,$(objects)) : $(TARGET) : $(patsubst %,$(DIR_DL)/%,$(objects)) @$(PREBUILD) @rm -rf $(DIR_SRC)/dbus* - cd $(DIR_SRC) && tar zxf $(DIR_DL)/$(DL_FILE) - cd $(DIR_APP) && ./configure --prefix=/usr --sysconfdir=/etc \ - --localstatedir=/var + cd $(DIR_SRC) && tar axf $(DIR_DL)/$(DL_FILE) + cd $(DIR_APP) && ./configure \ + --prefix=/usr \ + --sysconfdir=/etc \ + --localstatedir=/var \ + --disable-static cd $(DIR_APP) && make $(MAKETUNING) cd $(DIR_APP) && make install