Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-47393

Split CommandLauncher into a plugin and integrate with script-security

      As of Jenkins Security Advisory 2017-10-11 CommandLauncher configuration enforces RUN_SCRIPTS, which is awkward for cases where a lower-privileged user is permitted to configure other aspects of an agent. The launcher should be moved out of core into a plugin that can depend on script-security for a regular approval workflow.

          [JENKINS-47393] Split CommandLauncher into a plugin and integrate with script-security

          Jesse Glick created issue -
          Jesse Glick made changes -
          Link New: This issue relates to SECURITY-478 [ SECURITY-478 ]
          Jesse Glick made changes -
          Labels Original: security ux New: security split-plugins-from-core ux
          Jesse Glick made changes -
          Status Original: Open [ 1 ] New: In Progress [ 3 ]
          Jesse Glick made changes -
          Remote Link New: This issue links to "core PR 3076 (Web Link)" [ 17851 ]
          Jesse Glick made changes -
          Remote Link New: This issue links to "jenkins-test-harness PR 79 (Web Link)" [ 17852 ]
          Jesse Glick made changes -
          Status Original: In Progress [ 3 ] New: In Review [ 10005 ]

          Code changed in jenkins
          User: Jesse Glick
          Path:
          src/main/java/org/jvnet/hudson/test/HudsonTestCase.java
          src/main/java/org/jvnet/hudson/test/JenkinsRule.java
          src/main/java/org/jvnet/hudson/test/SimpleCommandLauncher.java
          src/main/resources/org/jvnet/hudson/test/SimpleCommandLauncher/config.jelly
          http://jenkins-ci.org/commit/jenkins-test-harness/913fb842b8edf01d5a556a10194ea2d6a686618e
          Log:
          JENKINS-47393 Remove signature and runtime references to CommandLauncher.

          SCM/JIRA link daemon added a comment - Code changed in jenkins User: Jesse Glick Path: src/main/java/org/jvnet/hudson/test/HudsonTestCase.java src/main/java/org/jvnet/hudson/test/JenkinsRule.java src/main/java/org/jvnet/hudson/test/SimpleCommandLauncher.java src/main/resources/org/jvnet/hudson/test/SimpleCommandLauncher/config.jelly http://jenkins-ci.org/commit/jenkins-test-harness/913fb842b8edf01d5a556a10194ea2d6a686618e Log: JENKINS-47393 Remove signature and runtime references to CommandLauncher.

          Code changed in jenkins
          User: Jesse Glick
          Path:
          src/main/java/org/jvnet/hudson/test/HudsonTestCase.java
          src/main/java/org/jvnet/hudson/test/JenkinsRule.java
          src/main/java/org/jvnet/hudson/test/SimpleCommandLauncher.java
          src/main/resources/org/jvnet/hudson/test/SimpleCommandLauncher/config.jelly
          http://jenkins-ci.org/commit/jenkins-test-harness/175e6b4e7d2dcb810fe9e9c127f295229424748f
          Log:
          Merge pull request #79 from jglick/CommandLauncher-JENKINS-47393

          JENKINS-47393 Remove signature and runtime references to CommandLauncher

          Compare: https://github.com/jenkinsci/jenkins-test-harness/compare/2d7d6b8a4480...175e6b4e7d2d

          SCM/JIRA link daemon added a comment - Code changed in jenkins User: Jesse Glick Path: src/main/java/org/jvnet/hudson/test/HudsonTestCase.java src/main/java/org/jvnet/hudson/test/JenkinsRule.java src/main/java/org/jvnet/hudson/test/SimpleCommandLauncher.java src/main/resources/org/jvnet/hudson/test/SimpleCommandLauncher/config.jelly http://jenkins-ci.org/commit/jenkins-test-harness/175e6b4e7d2dcb810fe9e9c127f295229424748f Log: Merge pull request #79 from jglick/CommandLauncher- JENKINS-47393 JENKINS-47393 Remove signature and runtime references to CommandLauncher Compare: https://github.com/jenkinsci/jenkins-test-harness/compare/2d7d6b8a4480...175e6b4e7d2d
          Jesse Glick made changes -
          Link New: This issue depends on HOSTING-442 [ HOSTING-442 ]

            jglick Jesse Glick
            jglick Jesse Glick
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

              Created:
              Updated:
              Resolved: