fapolicyd-1.4

https://github.com/linux-application-whitelisting/fapolicyd/releases/tag/v1.4 Resolves: RHEL-118362
2025-10-30 14:43:50 +01:00 · 2025-10-30 14:43:50 +01:00 · ccd6aa0436
commit ccd6aa0436
parent e1b6717d24
4 changed files with 15 additions and 53 deletions
--- a/.gitignore
+++ b/.gitignore
@ -34,5 +34,7 @@
 /fapolicyd-selinux-0.7.tar.gz
 /fapolicyd-1.3.7.tar.gz
 /fapolicyd-1.3.7.tar.gz.asc
-/fapolicyd-selinux-0.9.tar.gz
-/fapolicyd-selinux-0.9.tar.gz.asc
+/fapolicyd-1.4.tar.gz
+/fapolicyd-1.4.tar.gz.asc
+/fapolicyd-selinux-1.0.tar.gz
+/fapolicyd-selinux-1.0.tar.gz.asc
--- a/0100-Allow-daemon-to-change-dir-attributes.patch
+++ b/0100-Allow-daemon-to-change-dir-attributes.patch
@ -1,42 +0,0 @@
-From 679385956d73f37bf1295a4f0bc38a87bcb7245e Mon Sep 17 00:00:00 2001
-From: Petr Lautrbach <lautrbach@redhat.com>
-Date: Fri, 17 Oct 2025 16:49:24 +0200
-Subject: [PATCH] Allow daemon to change dir attributes
-Content-type: text/plain
-
-This is connected to:
-
-https://github.com/linux-application-whitelisting/fapolicyd/commit/c32b5baea4d371417c8259cce3a41d77d5cec1ad
-
-Originally introduced in commit 1db0e39fbd50, later poorly reverted due
-to lint issues
-
-Signed-off-by: Radovan Sroka <rsroka@redhat.com>
-Signed-off-by: Petr Lautrbach <lautrbach@redhat.com>
---
- fapolicyd.te | 2 ++
- 1 file changed, 2 insertions(+)
-
-diff --git a/fapolicyd-selinux-0.9/fapolicyd.te b/fapolicyd-selinux-0.9/fapolicyd.te
-index ef437295ec42..6edda3f64ef9 100644
--- a/fapolicyd-selinux-0.9/fapolicyd.te
-+++ b/fapolicyd-selinux-0.9/fapolicyd.te
-@@ -40,6 +40,7 @@ gen_require(`
- 	attribute file_type;
-     attribute filesystem_type;
-     attribute mountpoint;
-+    type var_run_t;
- ')
- 
- ifdef(`watch_mount_dirs_pattern',`
-@@ -54,6 +55,7 @@ ifdef(`fs_watch_all_fs',`
- ')
- 
- allow fapolicyd_t file_type : lnk_file { getattr read };
-+allow fapolicyd_t var_run_t:dir setattr;
- 
- manage_files_pattern(fapolicyd_t, fapolicyd_log_t, fapolicyd_log_t)
- logging_log_filetrans(fapolicyd_t, fapolicyd_log_t, file)
-- 
-2.51.0
-
--- a/fapolicyd.spec
+++ b/fapolicyd.spec
@ -1,10 +1,10 @@
 %global selinuxtype targeted
 %global moduletype contrib
-%define semodule_version 0.9
+%define semodule_version 1.0

 Summary: Application Whitelisting Daemon
 Name: fapolicyd
-Version: 1.3.7
+Version: 1.4
 Release: 1%{?dist}
 License: GPL-3.0-or-later
 URL: https://github.com/linux-application-whitelisting/fapolicyd
@ -18,12 +18,11 @@ Source11: https://github.com/linux-application-whitelisting/%{name}-selinux/rele
 Source20: https://github.com/troydhanson/uthash/archive/refs/tags/v2.3.0.tar.gz#/uthash-2.3.0.tar.gz

 # https://github.com/linux-application-whitelisting/fapolicyd
-# $ git format-patch -N v1.3.7
+# $ git format-patch -N v1.4
 # https://github.com/linux-application-whitelisting/fapolicyd-selinux
-# $ git format-patch -N --start-number 100 --src-prefix=a/fapolicyd-selinux-0.9/ --dst-prefix=b/fapolicyd-selinux-0.9/ v0.9
+# $ git format-patch -N --start-number 100 --src-prefix=a/fapolicyd-selinux-0.9/ --dst-prefix=b/fapolicyd-selinux-1.0/ v1.0
 # $ for j in [0-9]*.patch; do printf "Patch%s: %s\n" ${j/-*/} $j; done
 # Patch list start
-Patch0100: 0100-Allow-daemon-to-change-dir-attributes.patch
 # Patch list end

 BuildRequires: gcc
@ -230,6 +229,9 @@ fi
 %selinux_relabel_post -s %{selinuxtype}

 %changelog
+* Thu Oct 30 2025 Petr Lautrbach <lautrbach@redhat.com> - 1.4-1
+- fapolicyd-1.4 and fapolicyd-selinux-1.0
+
 * Thu Oct 16 2025 Petr Lautrbach <lautrbach@redhat.com> - 1.3.7-1
 - fapolicyd-1.3.7 and fapolicyd-selinux-0.9

--- a/8
+++ b/8
@ -1,5 +1,5 @@
-SHA512 (fapolicyd-1.3.7.tar.gz) = eb66e279377ed33763b9d64c0b0115a0ff37b20a08e47e41c920e30bcf39088781d0cede107b16af22ddf3fec3e48c35ea8dbc24b4e1c9e09ff0b99269d46775
-SHA512 (fapolicyd-1.3.7.tar.gz.asc) = f17504b3b3270e1c37f162c23cbc179b4fbe26ceaca3a06097980e3ed37d9aef3ecaec3e530effed9d09ffec3c7f7f6ef274d3659284ccc72dad29bd2ee1b51e
-SHA512 (fapolicyd-selinux-0.9.tar.gz) = 6b1c5af84bb5cbae225f236350931bdf9579771bd116adf9a1c1d900536c74dc873470c08ce55bdda0c71861f12044dd9702ceef5799449c35e4e78f236146e2
-SHA512 (fapolicyd-selinux-0.9.tar.gz.asc) = 79e14b6109367bc2fa7f7a2521927077e39c34049ec50e66d00f1758b907e95e42a6bc63440a1a5c791dcd7ac8970e9096e8fd93324ae1b1256c74f8284924c4
+SHA512 (fapolicyd-1.4.tar.gz) = c8e98192930eecb04eb4dd0f82eaaea72a307883c69e829f1801232ef71b493a0fcac39c8a2ce8dbd7253aa7566853b0404de150b8b0de7002e8226d2bf71334
+SHA512 (fapolicyd-1.4.tar.gz.asc) = 0e2df3d425aeec2f3b5e4a8c4c93601816f06ac874ab124bcc8af53bedc56e07bae4cc11c9c9b9bbd0e990b595f93e6738897c43042743ac2f64416b4d7f72e9
+SHA512 (fapolicyd-selinux-1.0.tar.gz) = 3c044b7570e2d5b990fcf85695e00526f3fd3c141d3d9b36209ee740f94031cb0a409a6887697f5b7a70f21a7c8fea2caab42eee605ba4b74d8b4a2fa1d8fa4a
+SHA512 (fapolicyd-selinux-1.0.tar.gz.asc) = caf55ef941587b10e62a9ed99b92dcf1dad32a444b80a5688899dbb49c4ee7ea0ff5d661c50e7403e38b1ab592cc893d907174f7ee071a10f7afcaeb6aa50858
 SHA512 (uthash-2.3.0.tar.gz) = 3b01f1074790fb242900411cb16eb82c1a9afcf58e3196a0f4611d9d7ef94690ad38c0a500e7783d3efa20328aa8d6ab14f246be63b3b3d385502ba2b6b2a294