Update to Brasero 2.25.x [LSARC/2009/201 FastTrack timeout 04/03/2009]

Brian Cameron Brian.Cameron at sun.com
Wed Apr 8 12:57:03 PDT 2009 

Due to the discussion, Lin has agreed to provide an updated
proposal which will address the concerns raised.

As agreed at the last LSARC meeting, the timeout has been
extended to April 17th to give time to address these issues,
and since John Fischer is on vacation.

Thanks,

Brian


On 03/27/09 13:01, John Fischer wrote:
> Template Version: @(#)sac_nextcase 1.68 02/23/09 SMI
> This information is Copyright 2009 Sun Microsystems
> 1. Introduction
>      1.1. Project/Component Working Name:
> 	 Update to Brasero 2.25.x
>      1.2. Name of Document Author/Supplier:
> 	 Author:  Lin Ma
>      1.3  Date of This Document:
> 	27 March, 2009
> 4. Technical Description
> 1. Introduction
>     1.1. Project/Component Working Name:
>
> 	Update to Brasero 2.25.x
>
>     1.2. Name of Document Author/Supplier:
>
> 	Lin Ma
>
>     1.3. Date of This Document:
>
> 	Mar/05/09
>
>     1.4. Name of Major Document Customer(s)/Consumer(s):
> 	1.4.1. The PAC or CPT you expect to review your project:
>
> 		Solaris PAC
>
> 	1.4.2. The ARC(s) you expect to review your project:
>
> 		LSARC
>
> 	1.4.3. The Director/VP who is "Sponsoring" this project:
>
> 		robert.odea at sun.com
>
> 	1.4.4. The name of your business unit:
>
> 		OPG / OpenSource
>
>     1.5. Email Aliases:
> 	1.5.1. Responsible Manager:     leo.binchy at Sun.COM
> 	1.5.2. Responsible Engineer:    lin.ma at Sun.COM
> 	1.5.3. Marketing Manager:       glynn.foster at sun.com
> 	1.5.4. Interest List:           desktop-discuss at opensolaris.org
>
> 4. Technical Description:
>
>      4.1. Details:
>
>      Brasero is a application to burn CD/DVD for the Gnome Desktop.
>      It is designed to be as simple as possible and has some unique
>      features to enable users to create their discs easily and quickly.
>
>      Instead of using gksu as described in LSARC 2008/548, this version
>      changes the method to acquire privileges.
>
>      Brasero makes use of the profile 'Console User' so that it is only
>      available to the console user who is the default owner of scsi
>      devices. It delivers brasero media library which uses uscsi(7I) to
>      gather devices/media information, e.g. speed, capacity, etc. Any
>      applications which depend on brasero media library have to handle
>      the required privileges or follow what brasero does.
>
>      According to privileges(5), brasero media library needs the
>      following privileges to send ioctl(2) commands to scsi devices:
>
>      - PRIV_SYS_DEVICES
>
>      Add the following line to the file prof_attr(4) and
>      exec_attr(4). Make console user has 'Desktop CD User' profile by
>      default. The package will also deliver file /usr/bin/brasero which
>      is a script to run 'pfexec /usr/bin/brasero.bin' to acquire above
>      privileges.
>
>      prof_attr:
>      Desktop CD User:::Access CD for desktop user:
>      Console User::::profiles=Desktop CD User
>
>      exec_attr:
>      Desktop CD User:solaris:cmd:::/usr/bin/brasero.bin:privs=sys_devices
>
>      4.2. Bug/RFE Number(s):
>
> 	6770524
>
>      4.5. Interfaces Changes:
>
> |---+-------------------------+-------------+-----------------------|
> |   | Imported                | Stability   | Comments              |
> |---+-------------------------+-------------+-----------------------|
> | - | GKsu                    | Uncommitted | LSARC 2006/348 GTK+   |
> |   |                         |             | Authorisation Library |
> |---+-------------------------+-------------+-----------------------|
> | + | /usr/bin/pfexec         | Committed   | PSARC 2002/188        |
> |---+-------------------------+-------------+-----------------------|
> | + | /etc/security/exec_attr | Committed   |                       |
> |---+-------------------------+-------------+-----------------------|
>
> |---+----------------------------------------+---------------+---------------|
> |   | Exported                               | Stability     | Comments      |
> |---+----------------------------------------+---------------+---------------|
> | ! | /usr/bin/brasero.bin                   | Volatile      | Binary        |
> |---+----------------------------------------+---------------+---------------|
> | + | /usr/bin/brasero                       | Volatile      | Script        |
> |---+----------------------------------------+---------------+---------------|
> | ! | All brasero backends                   | Private       | Brasero       |
> |   | /usr/lib/brasero/plugins/*.so          |               | backends      |
> |---+----------------------------------------+---------------+---------------|
> | + | /usr/lib/libbrasero-media.so           | Consolidation | Brasero media |
> |   |                                        | Private       | library [1]   |
> |---+----------------------------------------+---------------+---------------|
> | + | /usr/lib/pkgconfig/libbrasero-media.pc | Consolidation |               |
> |   |                                        | Private       |               |
> |---+----------------------------------------+---------------+---------------|
> | + | /usr/lib/nautilus/extensions-2.0/      | Consolidation | Nautilus      |
> |   | libnautilus-brasero-extension.so       | Private       | extension     |
> |---+----------------------------------------+---------------+---------------|
> | ! | SUNWgnome-cd-burner                    | Uncommitted   | Package       |
> | ! | SUNWgnome-cd-burner-root               | Uncommitted   | name          |
> | + | SUNWgnome-cd-burner-devel              | Uncommitted   | changes       |
> |---+----------------------------------------+---------------+---------------|
> | - | SUNWbrasero                            | Obsolete      | Old package   |
> | - | SUNWbrasero-root                       | Uncommitted   | names these   |
> |   |                                        |               | will be       |
> |   |                                        |               | removed       |
> |---+----------------------------------------+---------------+---------------|
>
> [1] The library for accessing scsi devices requires 'sys_devices'. It
> could be linked to other desktop applications.
>
> [2] The first column within the interface tables refers to the following:
>      '+' means that the interface was added
>      '-' means that the interface was removed
>      '!' means that the interface was changed
>
>      4.7. Admin/Config Impact:
>
>      Since brasero is for console users by default, it doesn't take
>      care of the ownership of a scsi device. If the admin wants to give
>      non-console users the ability to use brasero, he has to append
>      privilege 'file_dac_read' to line 'Desktop CD User/brasero' in
>      exec_attr, like:
>
>      Desktop CD User:solaris:cmd:::/usr/bin/brasero.bin:privs=sys_devices,file_dac_read
>
>      4.11. Security Impact:
>
>      A not Privilege Awareness(NPA) command excuted by the user (who has
>      'Primary Administrator' profile) with pfexec(1) will be matched
>      the line:
>
>      Primary Administrator:suser:cmd:::*:uid=0;gid=0
>
>      which will become a root process. The result is the reason of
>      CR#6749728 eject function doesn't work.
>
>      A temporary solution is to add the following line to exec_attr(4):
>
>      Primary Administrator:solaris:cmd:::/usr/bin/brasero.bin:privs=sys_devices
>
> 5. Reference Documents:
>
>     LSARC 2008/548  Brasero 0.8.x
>
>     RFE - 6770524
>
>     More information about Brasero can be found at these locations:
>
>     http://www.gnome.org/projects/brasero
>     http://www.gnomefiles.org/app.php/Brasero
>
> 6. Resources and Schedule
>      6.4. Steering Committee requested information
>     	6.4.1. Consolidation C-team Name:
> 		JDS - Desktop
>      6.5. ARC review type: FastTrack
>      6.6. ARC Exposure: open
>

More information about the opensolaris-arc mailing list