From owner-svn-src-projects@FreeBSD.ORG Mon Feb 11 12:39:36 2013 Return-Path: Delivered-To: svn-src-projects@freebsd.org Received: from mx1.freebsd.org (mx1.FreeBSD.org [8.8.178.115]) by hub.freebsd.org (Postfix) with ESMTP id 1E93E413; Mon, 11 Feb 2013 12:39:36 +0000 (UTC) (envelope-from linimon@FreeBSD.org) Received: from svn.freebsd.org (svn.freebsd.org [IPv6:2001:1900:2254:2068::e6a:0]) by mx1.freebsd.org (Postfix) with ESMTP id F144A639; Mon, 11 Feb 2013 12:39:35 +0000 (UTC) Received: from svn.freebsd.org ([127.0.1.70]) by svn.freebsd.org (8.14.5/8.14.5) with ESMTP id r1BCdZdE091643; Mon, 11 Feb 2013 12:39:35 GMT (envelope-from linimon@svn.freebsd.org) Received: (from linimon@localhost) by svn.freebsd.org (8.14.5/8.14.5/Submit) id r1BCdZUR091642; Mon, 11 Feb 2013 12:39:35 GMT (envelope-from linimon@svn.freebsd.org) Message-Id: <201302111239.r1BCdZUR091642@svn.freebsd.org> From: Mark Linimon Date: Mon, 11 Feb 2013 12:39:35 +0000 (UTC) To: src-committers@freebsd.org, svn-src-projects@freebsd.org Subject: svn commit: r246664 - projects/portbuild/admin/conf X-SVN-Group: projects MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit X-BeenThere: svn-src-projects@freebsd.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: "SVN commit messages for the src " projects" tree" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 11 Feb 2013 12:39:36 -0000 Author: linimon (doc,ports committer) Date: Mon Feb 11 12:39:35 2013 New Revision: 246664 URL: http://svnweb.freebsd.org/changeset/base/246664 Log: Add ZFS_PERMISSIONSET_SNAPS. This will allow PORTBUID_USER to clone and snapshot svn directroies. It used to be able to do this by itself, but now these directories are to be owned by the "more trusted" user SRCBUILD_CONF. Submitted by: crees Modified: projects/portbuild/admin/conf/admin.conf Modified: projects/portbuild/admin/conf/admin.conf ============================================================================== --- projects/portbuild/admin/conf/admin.conf Mon Feb 11 12:30:38 2013 (r246663) +++ projects/portbuild/admin/conf/admin.conf Mon Feb 11 12:39:35 2013 (r246664) @@ -17,9 +17,12 @@ ZFS_VOLUME=a # zfs mount point ZFS_MOUNTPOINT=/a -# zfs permission set. this delegates all permissions except "allow" and -# "receive". +# zfs general permission set. This delegates all permissions except +# "allow" and "receive". ZFS_PERMISSIONSET=clone,create,destroy,mount,promote,rename,rollback,send,share,snapshot +# zfs restricted permission set. This is so that PORTBUILD_USER can +# clone from files owned by SRCBUILD_USER (see below). +ZFS_PERMISSIONSET_SNAPS=clone,snapshot # portbuild subtree. holds portbuild codebase plus all architectures. # belongs to PORTBUILD_USER.