JenkinsIcon indicating the project type

Jenkins

Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-47393

Split CommandLauncher into a plugin and integrate with script-security

    Details

    • Similar Issues:

      Description

      As of Jenkins Security Advisory 2017-10-11 CommandLauncher configuration enforces RUN_SCRIPTS, which is awkward for cases where a lower-privileged user is permitted to configure other aspects of an agent. The launcher should be moved out of core into a plugin that can depend on script-security for a regular approval workflow.

        Attachments

          Issue Links

          depends on

          Bug - A problem which impairs or prevents the functions of the product. JENKINS-47593 can not to be online without permission

          • Critical - Crashes, loss of data, severe memory leak.
          • Resolved
          links to

          Web Link CloudBees Internal OSS-2247

          Web Link core PR 3076

          Web Link jenkins-test-harness PR 79

            Activity

            Ascending order - Click to sort in descending order
            4 older comments
            Hide
            Permalink
            jglick Jesse Glick added a comment -

            Merged toward 2.86.

            Show
            jglick Jesse Glick added a comment - Merged toward 2.86.
            Hide
            Permalink
            scm_issue_link SCM/JIRA link daemon added a comment -

            Code changed in jenkins
            User: Jesse Glick
            Path:
            plugins-compat-tester/src/main/java/org/jenkins/tools/test/PluginCompatTester.java
            http://jenkins-ci.org/commit/plugin-compat-tester/6161799eb3e73a8901ca43c23843d6206381140c
            Log:
            JENKINS-47393 PCT against 2.86+ needs to know about command-launcher split.

            Show
            scm_issue_link SCM/JIRA link daemon added a comment - Code changed in jenkins User: Jesse Glick Path: plugins-compat-tester/src/main/java/org/jenkins/tools/test/PluginCompatTester.java http://jenkins-ci.org/commit/plugin-compat-tester/6161799eb3e73a8901ca43c23843d6206381140c Log: JENKINS-47393 PCT against 2.86+ needs to know about command-launcher split.
            Hide
            Permalink
            scm_issue_link SCM/JIRA link daemon added a comment -

            Code changed in jenkins
            User: Andres Rodriguez
            Path:
            plugins-compat-tester/src/main/java/org/jenkins/tools/test/PluginCompatTester.java
            http://jenkins-ci.org/commit/plugin-compat-tester/aed1bab19ac477b74a5d9218fb5b724384d01c7c
            Log:
            Merge pull request #46 from jglick/CommandLauncher-JENKINS-47393

            JENKINS-47393 PCT against 2.86+ needs to know about command-launcher split

            Compare: https://github.com/jenkinsci/plugin-compat-tester/compare/593fc901ecce...aed1bab19ac4

            Show
            scm_issue_link SCM/JIRA link daemon added a comment - Code changed in jenkins User: Andres Rodriguez Path: plugins-compat-tester/src/main/java/org/jenkins/tools/test/PluginCompatTester.java http://jenkins-ci.org/commit/plugin-compat-tester/aed1bab19ac477b74a5d9218fb5b724384d01c7c Log: Merge pull request #46 from jglick/CommandLauncher- JENKINS-47393 JENKINS-47393 PCT against 2.86+ needs to know about command-launcher split Compare: https://github.com/jenkinsci/plugin-compat-tester/compare/593fc901ecce...aed1bab19ac4
            Hide
            Permalink
            scm_issue_link SCM/JIRA link daemon added a comment -

            Code changed in jenkins
            User: Andres Rodriguez
            Path:
            plugins-compat-tester/src/main/java/org/jenkins/tools/test/PluginCompatTester.java
            http://jenkins-ci.org/commit/plugin-compat-tester/c241be4210da2073b0bb1a9d944f0f3de51e48fd
            Log:
            Revert "JENKINS-47393 PCT against 2.86+ needs to know about command-launcher split"

            Show
            scm_issue_link SCM/JIRA link daemon added a comment - Code changed in jenkins User: Andres Rodriguez Path: plugins-compat-tester/src/main/java/org/jenkins/tools/test/PluginCompatTester.java http://jenkins-ci.org/commit/plugin-compat-tester/c241be4210da2073b0bb1a9d944f0f3de51e48fd Log: Revert " JENKINS-47393 PCT against 2.86+ needs to know about command-launcher split"
            Hide
            Permalink
            scm_issue_link SCM/JIRA link daemon added a comment -

            Code changed in jenkins
            User: Andres Rodriguez
            Path:
            plugins-compat-tester/src/main/java/org/jenkins/tools/test/PluginCompatTester.java
            http://jenkins-ci.org/commit/plugin-compat-tester/5bb27a5b79f5ee76ba0bf3d4150af4a13d9d8984
            Log:
            Merge pull request #47 from jenkinsci/revert-46-CommandLauncher-JENKINS-47393

            Revert "JENKINS-47393 PCT against 2.86+ needs to know about command-launcher split"

            Compare: https://github.com/jenkinsci/plugin-compat-tester/compare/aed1bab19ac4...5bb27a5b79f5

            Show
            scm_issue_link SCM/JIRA link daemon added a comment - Code changed in jenkins User: Andres Rodriguez Path: plugins-compat-tester/src/main/java/org/jenkins/tools/test/PluginCompatTester.java http://jenkins-ci.org/commit/plugin-compat-tester/5bb27a5b79f5ee76ba0bf3d4150af4a13d9d8984 Log: Merge pull request #47 from jenkinsci/revert-46-CommandLauncher- JENKINS-47393 Revert " JENKINS-47393 PCT against 2.86+ needs to know about command-launcher split" Compare: https://github.com/jenkinsci/plugin-compat-tester/compare/aed1bab19ac4...5bb27a5b79f5

              People

              • Assignee:
                jglick Jesse Glick
                Reporter:
                jglick Jesse Glick
              • Votes:
                0 Vote for this issue
                Watchers:
                3 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: