checkpolicy-3.5-2

- Add examples to man pages Signed-off-by: Vit Mojzis <vmojzis@redhat.com>
2023-06-22 19:17:12 +02:00 · 2023-06-22 19:17:12 +02:00 · 68e9cee1c2
commit 68e9cee1c2
parent d381f88358
2 changed files with 52 additions and 1 deletions
--- a/0001-checkpolicy-Add-examples-to-man-pages.patch
+++ b/0001-checkpolicy-Add-examples-to-man-pages.patch
@ -0,0 +1,47 @@
+From 1718f0b89648a0bf77578b05c0924daa14a7ca18 Mon Sep 17 00:00:00 2001
+From: Vit Mojzis <vmojzis@redhat.com>
+Date: Thu, 1 Jun 2023 16:39:14 +0200
+Subject: [PATCH] checkpolicy: Add examples to man pages
+
+Signed-off-by: Vit Mojzis <vmojzis@redhat.com>
+Acked-by: Petr Lautrbach <lautrbach@redhat.com>
+---
+ checkpolicy/checkpolicy.8 | 15 +++++++++++++--
+ 1 file changed, 13 insertions(+), 2 deletions(-)
+
+diff --git a/checkpolicy/checkpolicy.8 b/checkpolicy/checkpolicy.8
+index 2984c238..7843569b 100644
+--- a/checkpolicy/checkpolicy.8
+++ b/checkpolicy/checkpolicy.8
+@@ -12,8 +12,8 @@ command.
+ .PP
+ .B checkpolicy
+ is a program that checks and compiles a SELinux security policy configuration
+-into a binary representation that can be loaded into the kernel.  If no 
+-input file name is specified,
+into a binary representation that can be loaded into the kernel.
+If no input file name is specified,
+ .B checkpolicy
+ will attempt to read from policy.conf or policy, depending on whether the \-b
+ flag is specified.
+@@ -64,6 +64,17 @@ Show version information.
+ .B \-h,\-\-help
+ Show usage information.
+ 
+.SH EXAMPLE
+.nf
+Generate policy.conf based on the system policy
+# checkpolicy -b -M -F /etc/selinux/targeted/policy/policy.33 -o policy.conf
+Recompile system policy so that unknown permissions are denied (uses policy.conf from ^^).
+Note that binary policy extension represents its version, which is subject to change
+# checkpolicy -M -U deny -o /etc/selinux/targeted/policy/policy.33 policy.conf
+# load_policy
+Generate CIL representation of current system policy
+# checkpolicy -b -M -C /etc/selinux/targeted/policy/policy.33 -o policy.out
+
+ .SH "SEE ALSO"
+ SELinux Reference Policy documentation at https://github.com/SELinuxProject/refpolicy/wiki
+ 
+-- 
+2.40.0
+
--- a/checkpolicy.spec
+++ b/checkpolicy.spec
@ -4,7 +4,7 @@
 Summary: SELinux policy compiler
 Name: checkpolicy
 Version: 3.5
-Release: 1%{?dist}
+Release: 2%{?dist}
 License: GPL-2.0-or-later AND LGPL-2.1-or-later
 Source0: https://github.com/SELinuxProject/selinux/releases/download/3.5/checkpolicy-3.5.tar.gz
 # $ git clone https://github.com/fedora-selinux/selinux.git
@ -12,6 +12,7 @@ Source0: https://github.com/SELinuxProject/selinux/releases/download/3.5/checkpo
 # $ git format-patch -N 3.5 -- checkpolicy
 # $ i=1; for j in 00*patch; do printf "Patch%04d: %s\n" $i $j; i=$((i+1));done
 # Patch list start
+Patch0001: 0001-checkpolicy-Add-examples-to-man-pages.patch
 # Patch list end
 BuildRequires: gcc
 BuildRequires: make
@ -61,6 +62,9 @@ install test/dispol ${RPM_BUILD_ROOT}%{_bindir}/sedispol
 %{_bindir}/sedispol

 %changelog
+* Thu Jun 22 2023 Vit Mojzis <vmojzis@redhat.com> - 3.5-2
+- Add examples to man pages
+
 * Fri Feb 24 2023 Petr Lautrbach <lautrbach@redhat.com> - 3.5-1
 - SELinux userspace 3.5 release