Accepted policykit-1 122-2 (source) into unstable
- To: debian-devel-changes@lists.debian.org
- Subject: Accepted policykit-1 122-2 (source) into unstable
- From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
- Date: Fri, 20 Jan 2023 15:20:51 +0000
- Debian: DAK
- Debian-architecture: source
- Debian-archive-action: accept
- Debian-changes: policykit-1_122-2_source.changes
- Debian-source: policykit-1
- Debian-suite: unstable
- Debian-version: 122-2
- Dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=ftp-master.debian.org; s=smtpauto.fasolo; h=Date:Message-Id: Content-Transfer-Encoding:Content-Type:Subject:MIME-Version:To:Reply-To:From: Cc:Content-ID:Content-Description:In-Reply-To:References; bh=ZvJLF7FwiB6mqT1XCfJQ3d0UQY1riFmky+tivtTDo5c=; b=UqhBDCkKR17aDpIxyCE6aoUYZr 3FjlNy4nE33KabrORK5QuVqnSvSkh8lxhLRGU0TjuEhuZSaJz0HB2u0a4xvPPupRoyH6kaTUWQjRF pW0P1hYNQz8id9TnTedbQ/6+S2G7qjyIssdkcG61IgPfpeg/7KKVKfLONwXQxyVaQvclvIE7JDbRt PX8ObtOfQ5B6To6nzFUpMsexmrbQa+SLVXjTcSMUZ7phhnqHnobgfoe+pGSPx8nj9gVSeaZgMW07c uZS7257Rep2BYukewJhDq82nDK79kuAKScPzkRSlXVlfgpXHR8O/PYZKUWS6kNYO8r0pWmDtdOuMA FCTGErTw==;
- Mail-followup-to: debian-devel@lists.debian.org
- Message-id: <E1pItCF-003mvZ-Cf@fasolo.debian.org>
- Reply-to: debian-devel@lists.debian.org
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Fri, 20 Jan 2023 13:22:24 +0000
Source: policykit-1
Architecture: source
Version: 122-2
Distribution: unstable
Urgency: medium
Maintainer: Utopia Maintenance Team <pkg-utopia-maintainers@lists.alioth.debian.org>
Changed-By: Simon McVittie <smcv@debian.org>
Closes: 1006203 1023393 1026425 1027420
Changes:
policykit-1 (122-2) unstable; urgency=medium
.
[ Debian Janitor ]
* d/changelog: Trim trailing whitespace
* d/upstream/metadata: Update URLs for Bug-Database, Bug-Submit
.
[ Simon McVittie ]
* Update how we assign root-equivalent groups
- d/p/debian/50-default.rules-Replace-wheel-group-with-sudo-group.patch,
d/rules:
Set up Debian's default root-equivalent group 'sudo' in
50-default.rules rather than in 40-debian-sudo.rules. This ensures
that users of polkitd-pkla can override it by configuring admin
identities the old way. Previously, because 40-debian-sudo.rules was
earlier in the sequence than 49-polkit-pkla-compat.rules, it would
take precedence and the admin identities from polkitd-pkla were
ignored. (Closes: #1023393)
By default, polkitd-pkla does not provide any admin identities,
which means we behave as though polkitd-pkla was not installed at all,
and fall back to the sudo group defined in 50-default.rules.
- d/p/debian/05_revert-admin-identities-unix-group-wheel.patch:
Drop patch, superseded by the one described above
- d/rules: When built for Ubuntu, also install an Ubuntu-specific file
sequenced after 49-polkit-pkla-compat.rules but before
50-default.rules, which treats both the 'sudo' group and the legacy
'admin' group as root-equivalent.
* Replace /etc/pam.d/polkit-1 with /usr/lib/pam.d/polkit-1.
/usr/lib/pam.d has been supported since at least 1.4.0 (Debian 11),
so we can make this an ordinary packaged file instead of a conffile.
Local sysadmin overrides can still be done via /etc/pam.d/polkit-1
as before.
This sidesteps dpkg's inability to keep track of a conffile when it is
moved from one package to another (#399829, #645849, #163657, #595112).
(Closes: #1006203)
* postinst: Only clean up config directories if not owned.
If we only have polkitd installed, then we want to clean up the obsolete
directory /etc/polkit-1/localauthority.conf.d on upgrade, but if we
have polkitd-pkla installed, then it owns that directory and we should
not remove it. (Closes: #1026425)
* d/policykit-1.dirs: Continue to own some legacy directory names.
Having the transitional package continue to own these directories until
it has had a chance to clean up obsolete conffiles will silence warnings
from dpkg about inability to remove them. (Closes: #1027420)
* d/polkitd.postrm: Clean up /var/lib/polkit-1 on purge.
If /var/lib/polkit-1 was the polkitd user's home directory, then it
might contain a .cache subdirectory; clean that up too.
* Create polkitd user with home directory /nonexistent in new installations.
This will prevent it from creating detritus in /var/lib/polkit-1.
* polkitd.postinst: Change polkitd home directory to /nonexistent on upgrade
* Remove version constraints unnecessary since buster (oldstable)
* Update standards version to 4.6.2 (no changes needed)
Checksums-Sha1:
a8e3fbf4fbd919e9da88ee4e439addc3dd325219 3556 policykit-1_122-2.dsc
a2feaf746dd9ace0b93fab5db7f7afbb5d4bbf6f 45076 policykit-1_122-2.debian.tar.xz
2ca908f19286c592bff4826372a201758effa919 8593 policykit-1_122-2_source.buildinfo
Checksums-Sha256:
1c5f1e2430ad805fe27131e812653e8ce9712a41321240eb9a63bc340f895a98 3556 policykit-1_122-2.dsc
95c6abf7c872ac89fc999ce463d40b34a203e891c3ae63f9d18dfae89803ae89 45076 policykit-1_122-2.debian.tar.xz
fa8760e1cf14b00a00d31ffed9808e355d0e529bcded47e6442095c3f8060827 8593 policykit-1_122-2_source.buildinfo
Files:
47945dcf9e9f0e283c7965383645c8eb 3556 admin optional policykit-1_122-2.dsc
339f18075a6a9af9d1d1f117f8a3b084 45076 admin optional policykit-1_122-2.debian.tar.xz
e8be4bd285d8f90396e372aaa15788e1 8593 admin optional policykit-1_122-2_source.buildinfo
-----BEGIN PGP SIGNATURE-----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=1idG
-----END PGP SIGNATURE-----