Bug 864613
| Summary: | Authorization list comes out in wrong order in PolicyKit local authority | |||
|---|---|---|---|---|
| Product: | Red Hat Enterprise Linux 6 | Reporter: | jared jennings <jjennings> | |
| Component: | polkit | Assignee: | Miloslav Trmač <mitr> | |
| Status: | CLOSED ERRATA | QA Contact: | Martin Žember <mzember> | |
| Severity: | medium | Docs Contact: | ||
| Priority: | medium | |||
| Version: | 6.3 | CC: | cww, ebenes, ksrot, mzember, salmy | |
| Target Milestone: | rc | |||
| Target Release: | --- | |||
| Hardware: | Unspecified | |||
| OS: | Unspecified | |||
| Whiteboard: | ||||
| Fixed In Version: | polkit-0.96-6.el6 | Doc Type: | Bug Fix | |
| Doc Text: | Story Points: | --- | ||
| Clone Of: | ||||
| : | 951756 1663177 1663180 (view as bug list) | Environment: | ||
| Last Closed: | 2014-10-14 07:27:39 UTC | Type: | Bug | |
| Regression: | --- | Mount Type: | --- | |
| Documentation: | --- | CRM: | ||
| Verified Versions: | Category: | --- | ||
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | ||
| Cloudforms Team: | --- | Target Upstream Version: | ||
| Embargoed: | ||||
| Bug Depends On: | 951756 | |||
| Bug Blocks: | ||||
| Attachments: | ||||
|
Description
jared jennings
2012-10-09 18:32:24 UTC
Created attachment 624255 [details]
reverse authorization list only after it is entirely built
Created attachment 624256 [details]
sort filenames before iterating over them
I cribbed the sort function and its usage from one of the other source files in the same directory.
I looked at http://cgit.freedesktop.org/polkit/tree/src/polkitbackend and it seems the upstream PolicyKit is now very different; I'm not sure these patches mean anything there. This looks like the same issue as https://bugs.freedesktop.org/show_bug.cgi?id=26131 D'oh! I wrote the comment on the wrong ticket! Should have been in Bug 812684, sorry. Comment on attachment 624219 [details]
add debugging statements to clarify behavior of polkit_backend_local_authorization_store_ensure function
Noticed that the debugging statements patch attachment was not marked as a patch; marked it
Thanks for your report. My reading of pklocalauthority(8) is that it defines the ordering of subdirectories, but not the ordering of files within a directory, so this is not strictly speaking contrary to documentation. However, it still makes good sense to make the ordering consistent to avoid surprisingly different behavior when the configuration is e.g. restored from a backup. (Reading the patch without testing it, compare_filename_reverse seems to use a non-reversed order.) Created attachment 744858 [details] 0001-Sort-filenames-before-iterating-over-them.patch applied in polkit-pkla-compat upstream (In reply to comment #9) > (Reading the patch without testing it, compare_filename_reverse seems to use > a non-reversed order.) This updated patch avoids this confusion, and explicitly talks about basenames because that's what we are interested in. This request was evaluated by Red Hat Product Management for inclusion in the current release of Red Hat Enterprise Linux. Because the affected component is not scheduled to be updated in the current release, Red Hat is unable to address this request at this time. Red Hat invites you to ask your support representative to propose this request, if appropriate, in the next release of Red Hat Enterprise Linux. Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. http://rhn.redhat.com/errata/RHBA-2014-1533.html |