[Rpm-maint] [PATCH 0/3] MeeGo security plugin interface

Panu Matilainen pmatilai at redhat.com
Thu Jan 27 12:28:07 UTC 2011


On 01/21/2011 11:23 AM, ext-tero.aho at nokia.com wrote:
> This patchset introduces new security plugin interface to RPM. It has
> been designed for MeeGo which is using Smack for MAC, but should be
> general enough for other security modules also.
> Up to now we have been developing on top of master (these patches are
> for master), but now it seems that we have to backport our stuff to
> 4.8.x for the next MeeGo release. We will move back to RPM 4.9.x in
> sync with MeeGo releases later on.

Hum, backporting to 4.8.x sounds like a huge PITA to me, with 4.9.0 
"just around the corner."

> However, it's very important to get our package tags integrated now
> to be binary compatible also in the future. These tags are in
> 0003-Reserving-tags-for-MSSF.patch.
> The actual security interface is defined in
> 0001-Security-plugin-interface.patch. That includes all changes to
> original RPM sources (hook functions) and some additional files to
> load the plugin and execute hook functions. The MSSF plugin code is
> not included in this patch yet, as it is still evolving. But it is
> GPL code and will be sent here soon. Patch 0002-General-fixes.patch
> has just some small improvements.
> At the moment the tags patch is the most important to us. If you
> don't consider the security interface patch to be mature enough, we
> can simply have that as basis for discussion for now.

I haven't had a chance to look at the patches in any detail yet so 
detailed comments will come later (and it might be a while as getting 
4.9.0 ready is keeping me a bit busy right now), but consider this as an 
ACK for the tag reservation.

     - Panu -

More information about the Rpm-maint mailing list