2004-09-09 07:41:25 +00:00
|
|
|
Summary: SELinux library and simple utilities
|
|
|
|
Name: libselinux
|
2005-07-18 19:15:29 +00:00
|
|
|
Version: 1.24.2
|
2005-05-20 17:18:49 +00:00
|
|
|
Release: 1
|
2004-09-09 07:41:25 +00:00
|
|
|
License: Public domain (uncopyrighted)
|
|
|
|
Group: System Environment/Libraries
|
2004-12-20 14:25:06 +00:00
|
|
|
Source: http://www.nsa.gov/selinux/archives/%{name}-%{version}.tgz
|
2005-06-29 20:04:50 +00:00
|
|
|
Patch: libselinux-rhat.patch
|
2005-01-12 14:37:21 +00:00
|
|
|
|
2004-09-09 07:45:58 +00:00
|
|
|
BuildRoot: %{_tmppath}/%{name}-%{version}-buildroot
|
2004-09-09 07:41:25 +00:00
|
|
|
|
|
|
|
%description
|
|
|
|
Security-enhanced Linux is a patch of the Linux® kernel and a number
|
|
|
|
of utilities with enhanced security functionality designed to add
|
|
|
|
mandatory access controls to Linux. The Security-enhanced Linux
|
|
|
|
kernel contains new architectural components originally developed to
|
|
|
|
improve the security of the Flask operating system. These
|
|
|
|
architectural components provide general support for the enforcement
|
|
|
|
of many kinds of mandatory access control policies, including those
|
|
|
|
based on the concepts of Type Enforcement®, Role-based Access
|
|
|
|
Control, and Multi-level Security.
|
|
|
|
|
|
|
|
libselinux provides an API for SELinux applications to get and set
|
|
|
|
process and file security contexts and to obtain security policy
|
|
|
|
decisions. Required for any applications that use the SELinux API.
|
|
|
|
|
|
|
|
%package devel
|
|
|
|
Summary: Header files and libraries used to build SELinux
|
|
|
|
Group: Development/Libraries
|
2004-12-29 17:08:58 +00:00
|
|
|
Requires: libselinux = %{version}-%{release}
|
2004-09-09 07:41:25 +00:00
|
|
|
|
|
|
|
%description devel
|
|
|
|
The selinux-devel package contains the static libraries and header files
|
|
|
|
needed for developing SELinux applications.
|
|
|
|
|
|
|
|
%prep
|
|
|
|
%setup -q
|
2005-06-29 20:04:50 +00:00
|
|
|
%patch -p1 -b .rhat
|
2005-02-21 14:10:27 +00:00
|
|
|
|
2004-09-09 07:41:25 +00:00
|
|
|
%build
|
2004-10-15 13:42:33 +00:00
|
|
|
make CFLAGS="-g %{optflags}"
|
2004-09-09 07:41:25 +00:00
|
|
|
|
|
|
|
%install
|
|
|
|
rm -rf ${RPM_BUILD_ROOT}
|
|
|
|
mkdir -p ${RPM_BUILD_ROOT}/%{_lib}
|
|
|
|
mkdir -p ${RPM_BUILD_ROOT}/%{_libdir}
|
|
|
|
mkdir -p ${RPM_BUILD_ROOT}%{_includedir}
|
2004-10-28 21:25:27 +00:00
|
|
|
mkdir -p ${RPM_BUILD_ROOT}%{_sbindir}
|
|
|
|
make DESTDIR="${RPM_BUILD_ROOT}" LIBDIR="${RPM_BUILD_ROOT}%{_libdir}" SHLIBDIR="${RPM_BUILD_ROOT}/%{_lib}" BINDIR="${RPM_BUILD_ROOT}%{_sbindir}" install
|
2004-09-09 07:41:25 +00:00
|
|
|
|
2004-10-27 20:53:11 +00:00
|
|
|
# Nuke the files we don't want to distribute
|
2004-10-28 21:25:27 +00:00
|
|
|
rm -f ${RPM_BUILD_ROOT}%{_sbindir}/compute_*
|
|
|
|
rm -f ${RPM_BUILD_ROOT}%{_sbindir}/deftype
|
|
|
|
rm -f ${RPM_BUILD_ROOT}%{_sbindir}/execcon
|
|
|
|
rm -f ${RPM_BUILD_ROOT}%{_sbindir}/getcon
|
2004-11-01 18:56:08 +00:00
|
|
|
rm -f ${RPM_BUILD_ROOT}%{_sbindir}/getconlist
|
2004-10-28 21:25:27 +00:00
|
|
|
rm -f ${RPM_BUILD_ROOT}%{_sbindir}/getenforcemode
|
|
|
|
rm -f ${RPM_BUILD_ROOT}%{_sbindir}/getfilecon
|
|
|
|
rm -f ${RPM_BUILD_ROOT}%{_sbindir}/getpidcon
|
|
|
|
rm -f ${RPM_BUILD_ROOT}%{_sbindir}/mkdircon
|
|
|
|
rm -f ${RPM_BUILD_ROOT}%{_sbindir}/policyvers
|
|
|
|
rm -f ${RPM_BUILD_ROOT}%{_sbindir}/setfilecon
|
|
|
|
rm -f ${RPM_BUILD_ROOT}%{_sbindir}/selinuxconfig
|
|
|
|
rm -f ${RPM_BUILD_ROOT}%{_sbindir}/selinuxdisable
|
2004-10-27 20:53:11 +00:00
|
|
|
|
2004-09-09 07:41:25 +00:00
|
|
|
%clean
|
|
|
|
rm -rf ${RPM_BUILD_ROOT}
|
|
|
|
|
2004-09-09 07:46:10 +00:00
|
|
|
%post -p /sbin/ldconfig
|
2004-09-09 07:45:58 +00:00
|
|
|
|
2004-09-09 07:46:10 +00:00
|
|
|
%postun -p /sbin/ldconfig
|
2004-09-09 07:41:25 +00:00
|
|
|
|
|
|
|
%files devel
|
|
|
|
%defattr(-,root,root)
|
|
|
|
%{_libdir}/libselinux.a
|
|
|
|
%{_libdir}/libselinux.so
|
2004-09-09 07:42:26 +00:00
|
|
|
%dir %{_includedir}/selinux
|
2004-09-09 07:45:58 +00:00
|
|
|
%{_includedir}/selinux/
|
2004-09-09 07:42:26 +00:00
|
|
|
%{_mandir}/man3/*
|
2004-09-09 07:41:25 +00:00
|
|
|
|
|
|
|
%files
|
2004-09-09 07:45:58 +00:00
|
|
|
%defattr(-,root,root,0755)
|
|
|
|
/%{_lib}/libselinux.so.*
|
2004-10-28 21:25:27 +00:00
|
|
|
%{_sbindir}/*
|
2004-09-09 07:42:26 +00:00
|
|
|
%{_mandir}/man8/*
|
2004-09-09 07:41:25 +00:00
|
|
|
|
|
|
|
%changelog
|
2005-07-18 19:15:29 +00:00
|
|
|
* Mon Jun 18 2005 Dan Walsh <dwalsh@redhat.com> 1.24.2-1
|
|
|
|
- Update makefiles
|
|
|
|
|
2005-06-29 20:04:50 +00:00
|
|
|
* Wed Jun 29 2005 Dan Walsh <dwalsh@redhat.com> 1.24.1-1
|
|
|
|
- Update from NSA
|
|
|
|
* Merged security_setupns() from Chad Sellers.
|
|
|
|
- fix selinuxenabled man page
|
|
|
|
|
2005-05-20 17:18:49 +00:00
|
|
|
* Fri May 20 2005 Dan Walsh <dwalsh@redhat.com> 1.23.11-1
|
|
|
|
- Update from NSA
|
|
|
|
* Merged avcstat and selinux man page from Dan Walsh.
|
|
|
|
* Changed security_load_booleans to process booleans.local
|
|
|
|
even if booleans file doesn't exist.
|
|
|
|
|
2005-05-11 15:00:11 +00:00
|
|
|
* Fri Apr 26 2005 Dan Walsh <dwalsh@redhat.com> 1.23.10-3
|
|
|
|
- Fix avcstat to clear totals
|
|
|
|
|
2005-04-29 19:03:45 +00:00
|
|
|
* Fri Apr 26 2005 Dan Walsh <dwalsh@redhat.com> 1.23.10-2
|
|
|
|
- Add info to man page
|
|
|
|
|
2005-04-29 18:11:40 +00:00
|
|
|
* Fri Apr 26 2005 Dan Walsh <dwalsh@redhat.com> 1.23.10-1
|
|
|
|
- Update from NSA
|
|
|
|
* Merged set_selinuxmnt patch from Bill Nottingham (Red Hat).
|
|
|
|
* Rewrote get_ordered_context_list and helpers, including
|
|
|
|
changing logic to allow variable MLS fields.
|
|
|
|
|
2005-04-26 16:25:57 +00:00
|
|
|
* Tue Apr 26 2005 Dan Walsh <dwalsh@redhat.com> 1.23.8-1
|
|
|
|
- Update from NSA
|
|
|
|
|
2005-04-21 14:20:57 +00:00
|
|
|
* Thu Apr 21 2005 Dan Walsh <dwalsh@redhat.com> 1.23.7-3
|
|
|
|
- Add backin matchpathcon
|
|
|
|
|
2005-04-13 19:12:02 +00:00
|
|
|
* Wed Apr 13 2005 Dan Walsh <dwalsh@redhat.com> 1.23.7-2
|
|
|
|
- Fix selinux_policy_root man page
|
|
|
|
|
2005-04-13 15:42:02 +00:00
|
|
|
* Wed Apr 13 2005 Dan Walsh <dwalsh@redhat.com> 1.23.7-1
|
|
|
|
- Change assert(selinux_mnt) to if (!selinux_mnt) return -1;
|
|
|
|
|
2005-04-11 20:11:29 +00:00
|
|
|
* Mon Apr 11 2005 Dan Walsh <dwalsh@redhat.com> 1.23.6-1
|
|
|
|
- Update from NSA
|
|
|
|
* Fixed bug in matchpathcon_filespec_destroy.
|
|
|
|
|
2005-04-06 11:06:40 +00:00
|
|
|
* Wed Apr 6 2005 Dan Walsh <dwalsh@redhat.com> 1.23.5-1
|
|
|
|
- Update from NSA
|
|
|
|
* Fixed bug in rpm_execcon error handling path.
|
|
|
|
|
2005-04-04 20:17:21 +00:00
|
|
|
* Mon Apr 4 2005 Dan Walsh <dwalsh@redhat.com> 1.23.4-1
|
|
|
|
- Update from NSA
|
|
|
|
* Merged fix for set_matchpathcon* functions from Andreas Steinmetz.
|
|
|
|
* Merged fix for getconlist utility from Andreas Steinmetz.
|
|
|
|
|
2005-03-30 03:02:38 +00:00
|
|
|
* Tue Mar 29 2005 Dan Walsh <dwalsh@redhat.com> 1.23.2-3
|
|
|
|
- Update from NSA
|
|
|
|
|
2005-03-29 15:33:55 +00:00
|
|
|
* Wed Mar 23 2005 Dan Walsh <dwalsh@redhat.com> 1.23.2-2
|
|
|
|
- Better handling of booleans
|
|
|
|
|
2005-03-17 20:01:37 +00:00
|
|
|
* Thu Mar 17 2005 Dan Walsh <dwalsh@redhat.com> 1.23.2-1
|
|
|
|
- Update from NSA
|
|
|
|
* Merged destructors patch from Tomas Mraz.
|
|
|
|
|
|
|
|
* Thu Mar 17 2005 Dan Walsh <dwalsh@redhat.com> 1.23.1-1
|
2005-03-17 15:39:58 +00:00
|
|
|
- Update from NSA
|
|
|
|
* Added set_matchpathcon_flags() function for setting flags
|
|
|
|
controlling operation of matchpathcon. MATCHPATHCON_BASEONLY
|
|
|
|
means only process the base file_contexts file, not
|
|
|
|
file_contexts.homedirs or file_contexts.local, and is for use by
|
|
|
|
setfiles -c.
|
|
|
|
* Updated matchpathcon.3 man page.
|
|
|
|
|
2005-03-10 14:44:02 +00:00
|
|
|
* Thu Mar 10 2005 Dan Walsh <dwalsh@redhat.com> 1.22-1
|
|
|
|
- Update from NSA
|
|
|
|
|
2005-03-08 20:15:20 +00:00
|
|
|
* Tue Mar 8 2005 Dan Walsh <dwalsh@redhat.com> 1.21.13-1
|
|
|
|
- Update from NSA
|
|
|
|
* Fixed bug in matchpathcon_filespec_add() - failure to clear fl_head.
|
|
|
|
|
2005-03-02 04:04:04 +00:00
|
|
|
* Tue Mar 1 2005 Dan Walsh <dwalsh@redhat.com> 1.21.12-1
|
|
|
|
- Update from NSA
|
|
|
|
* Changed matchpathcon_common to ignore any non-format bits in the mode.
|
|
|
|
|
|
|
|
* Mon Feb 28 2005 Dan Walsh <dwalsh@redhat.com> 1.21.11-2
|
|
|
|
- Default matchpathcon to regular files if the user specifies a mode
|
|
|
|
|
2005-02-22 21:38:09 +00:00
|
|
|
* Tue Feb 22 2005 Dan Walsh <dwalsh@redhat.com> 1.21.11-1
|
|
|
|
- Update from NSA
|
|
|
|
* Merged several fixes from Ulrich Drepper.
|
|
|
|
|
2005-02-21 14:25:51 +00:00
|
|
|
* Mon Feb 21 2005 Dan Walsh <dwalsh@redhat.com> 1.21.10-3
|
2005-02-21 14:10:27 +00:00
|
|
|
- Fix matchpathcon on eof.
|
|
|
|
|
2005-02-17 19:27:56 +00:00
|
|
|
* Thu Feb 17 2005 Dan Walsh <dwalsh@redhat.com> 1.21.10-1
|
|
|
|
- Update from NSA
|
|
|
|
* Merged matchpathcon patch for file_contexts.homedir from Dan Walsh.
|
|
|
|
* Added selinux_users_path() for path to directory containing
|
|
|
|
system.users and local.users.
|
|
|
|
|
2005-02-11 01:38:47 +00:00
|
|
|
* Thu Feb 10 2005 Dan Walsh <dwalsh@redhat.com> 1.21.9-2
|
|
|
|
- Process file_context.homedir
|
|
|
|
|
2005-02-10 13:48:34 +00:00
|
|
|
* Thu Feb 10 2005 Dan Walsh <dwalsh@redhat.com> 1.21.9-1
|
|
|
|
- Update from NSA
|
|
|
|
* Changed relabel Makefile target to use restorecon.
|
|
|
|
|
2005-02-08 21:20:55 +00:00
|
|
|
* Tue Feb 8 2005 Dan Walsh <dwalsh@redhat.com> 1.21.8-1
|
|
|
|
- Update from NSA
|
|
|
|
* Regenerated av_permissions.h.
|
|
|
|
|
2005-02-02 23:18:13 +00:00
|
|
|
* Wed Feb 2 2005 Dan Walsh <dwalsh@redhat.com> 1.21.7-1
|
|
|
|
- Update from NSA
|
|
|
|
* Modified avc_dump_av to explicitly check for any permissions that
|
|
|
|
cannot be mapped to string names and display them as a hex value.
|
|
|
|
* Regenerated av_permissions.h.
|
|
|
|
|
2005-01-31 18:51:58 +00:00
|
|
|
* Mon Jan 31 2005 Dan Walsh <dwalsh@redhat.com> 1.21.5-1
|
|
|
|
- Update from NSA
|
|
|
|
* Generalized matchpathcon internals, exported more interfaces,
|
|
|
|
and moved additional code from setfiles into libselinux so that
|
|
|
|
setfiles can directly use matchpathcon.
|
|
|
|
|
2005-01-28 17:19:20 +00:00
|
|
|
* Fri Jan 28 2005 Dan Walsh <dwalsh@redhat.com> 1.21.4-1
|
|
|
|
- Update from NSA
|
|
|
|
* Prevent overflow of spec array in matchpathcon.
|
|
|
|
* Fixed several uses of internal functions to avoid relocations.
|
|
|
|
* Changed rpm_execcon to check is_selinux_enabled() and fallback to
|
|
|
|
a regular execve if not enabled (or unable to determine due to a lack
|
|
|
|
of /proc, e.g. chroot'd environment).
|
|
|
|
|
2005-01-26 16:36:33 +00:00
|
|
|
* Wed Jan 26 2005 Dan Walsh <dwalsh@redhat.com> 1.21.2-1
|
|
|
|
- Update from NSA
|
|
|
|
* Merged minor fix for avcstat from Dan Walsh.
|
|
|
|
|
2005-01-24 20:46:24 +00:00
|
|
|
* Mon Jan 24 2005 Dan Walsh <dwalsh@redhat.com> 1.21.1-3
|
|
|
|
- rpmexeccon should not fail in permissive mode.
|
|
|
|
|
2005-01-21 20:57:55 +00:00
|
|
|
* Fri Jan 20 2005 Dan Walsh <dwalsh@redhat.com> 1.21.1-2
|
|
|
|
- fix printf in avcstat
|
2005-01-26 16:36:33 +00:00
|
|
|
|
2005-01-20 13:58:18 +00:00
|
|
|
* Thu Jan 20 2005 Dan Walsh <dwalsh@redhat.com> 1.21.1-1
|
|
|
|
- Update from NSA
|
|
|
|
|
2005-01-18 22:27:57 +00:00
|
|
|
* Wed Jan 12 2005 Dan Walsh <dwalsh@redhat.com> 1.20.1-3
|
|
|
|
- Modify matchpathcon to also process file_contexts.local if it exists
|
|
|
|
|
2005-01-12 14:37:21 +00:00
|
|
|
* Wed Jan 12 2005 Dan Walsh <dwalsh@redhat.com> 1.20.1-2
|
|
|
|
- Add is_customizable_types function call
|
|
|
|
|
2005-01-07 14:48:24 +00:00
|
|
|
* Fri Jan 7 2005 Dan Walsh <dwalsh@redhat.com> 1.20.1-1
|
|
|
|
- Update to latest from upstream
|
|
|
|
* Just changing version number to match upstream
|
|
|
|
|
2004-12-29 17:08:58 +00:00
|
|
|
* Wed Dec 29 2004 Dan Walsh <dwalsh@redhat.com> 1.19.4-1
|
|
|
|
- Update to latest from upstream
|
|
|
|
* Changed matchpathcon to return -1 with errno ENOENT for
|
|
|
|
<<none>> entries, and also for an empty file_contexts configuration.
|
|
|
|
|
2004-12-28 15:40:26 +00:00
|
|
|
* Tue Dec 28 2004 Dan Walsh <dwalsh@redhat.com> 1.19.3-3
|
|
|
|
- Fix link devel libraries
|
|
|
|
|
2004-12-27 11:53:31 +00:00
|
|
|
* Mon Dec 27 2004 Dan Walsh <dwalsh@redhat.com> 1.19.3-2
|
|
|
|
- Fix unitialized variable in avcstat.c
|
|
|
|
|
2004-12-03 19:41:58 +00:00
|
|
|
* Tue Nov 30 2004 Dan Walsh <dwalsh@redhat.com> 1.19.3-1
|
|
|
|
- Upgrade to upstream
|
|
|
|
* Removed some trivial utils that were not useful or redundant.
|
|
|
|
* Changed BINDIR default to /usr/sbin to match change in Fedora.
|
|
|
|
* Added security_compute_member.
|
|
|
|
* Added man page for setcon.
|
|
|
|
|
2004-12-01 01:31:34 +00:00
|
|
|
* Tue Nov 30 2004 Dan Walsh <dwalsh@redhat.com> 1.19.2-1
|
|
|
|
- Upgrade to upstream
|
|
|
|
|
2004-11-18 21:30:11 +00:00
|
|
|
* Thu Nov 18 2004 Dan Walsh <dwalsh@redhat.com> 1.19.1-6
|
2004-11-18 21:29:18 +00:00
|
|
|
- Add avcstat program
|
|
|
|
|
2004-11-15 20:13:52 +00:00
|
|
|
* Mon Nov 15 2004 Dan Walsh <dwalsh@redhat.com> 1.19.1-4
|
2004-11-15 20:05:55 +00:00
|
|
|
- Add lots of missing man pages
|
|
|
|
|
2004-11-12 13:03:50 +00:00
|
|
|
* Fri Nov 12 2004 Dan Walsh <dwalsh@redhat.com> 1.19.1-2
|
|
|
|
- Fix output of getsebool.
|
|
|
|
|
2004-11-09 14:24:39 +00:00
|
|
|
* Tue Nov 9 2004 Dan Walsh <dwalsh@redhat.com> 1.19.1-1
|
|
|
|
- Update from upstream, fix setsebool -P segfault
|
|
|
|
|
2004-11-05 22:26:36 +00:00
|
|
|
* Fri Nov 5 2004 Steve Grubb <sgrubb@redhat.com> 1.18.1-5
|
|
|
|
- Add a patch from upstream. Fixes signed/unsigned issues, and
|
|
|
|
incomplete structure copy.
|
|
|
|
|
2004-11-04 18:25:37 +00:00
|
|
|
* Thu Nov 4 2004 Dan Walsh <dwalsh@redhat.com> 1.18.1-4
|
|
|
|
- More fixes from sgrubb, better syslog
|
|
|
|
|
2004-11-04 15:50:24 +00:00
|
|
|
* Thu Nov 4 2004 Dan Walsh <dwalsh@redhat.com> 1.18.1-3
|
2004-11-04 17:30:03 +00:00
|
|
|
- Have setsebool and togglesebool log changes to syslog
|
2004-11-04 15:50:24 +00:00
|
|
|
|
2004-11-03 20:50:26 +00:00
|
|
|
* Wed Nov 3 2004 Steve Grubb <sgrubb@redhat.com> 1.18.1-2
|
|
|
|
- Add patch to make setsebool update bool on disk
|
2004-11-04 17:30:03 +00:00
|
|
|
- Make togglesebool have a rollback capability in case it blows up inflight
|
2004-11-03 20:50:26 +00:00
|
|
|
|
2004-11-02 19:47:54 +00:00
|
|
|
* Tue Nov 2 2004 Dan Walsh <dwalsh@redhat.com> 1.18.1-1
|
|
|
|
- Upgrade to latest from NSA
|
|
|
|
|
2004-10-28 21:25:27 +00:00
|
|
|
* Thu Oct 28 2004 Steve Grubb <sgrubb@redhat.com> 1.17.15-2
|
|
|
|
- Changed the location of the utilities to /usr/sbin since
|
|
|
|
normal users can't use them anyways.
|
|
|
|
|
2004-10-27 20:53:11 +00:00
|
|
|
* Wed Oct 27 2004 Steve Grubb <sgrubb@redhat.com> 1.17.15-2
|
2004-10-28 21:25:27 +00:00
|
|
|
- Updated various utilities, removed utilities that are for testing,
|
|
|
|
added man pages.
|
2004-10-27 20:53:11 +00:00
|
|
|
|
2004-10-15 13:42:33 +00:00
|
|
|
* Fri Oct 15 2004 Dan Walsh <dwalsh@redhat.com> 1.17.15-1
|
|
|
|
- Add -g flag to make
|
|
|
|
- Upgrade to latest from NSA
|
|
|
|
* Added rpm_execcon.
|
|
|
|
|
2004-10-06 14:03:28 +00:00
|
|
|
* Fri Oct 1 2004 Dan Walsh <dwalsh@redhat.com> 1.17.14-1
|
|
|
|
- Upgrade to latest from NSA
|
|
|
|
* Merged setenforce and removable context patch from Dan Walsh.
|
|
|
|
* Merged build fix for alpha from Ulrich Drepper.
|
|
|
|
* Removed copyright/license from selinux_netlink.h - definitions only.
|
|
|
|
|
2004-10-01 18:56:25 +00:00
|
|
|
* Fri Oct 1 2004 Dan Walsh <dwalsh@redhat.com> 1.17.13-3
|
|
|
|
- Change setenforce to accept Enforcing and Permissive
|
|
|
|
|
2004-09-22 12:06:18 +00:00
|
|
|
* Wed Sep 22 2004 Dan Walsh <dwalsh@redhat.com> 1.17.13-2
|
|
|
|
- Add alpha patch
|
|
|
|
|
2004-09-20 19:50:16 +00:00
|
|
|
* Mon Sep 20 2004 Dan Walsh <dwalsh@redhat.com> 1.17.13-1
|
|
|
|
- Upgrade to latest from NSA
|
|
|
|
|
2004-09-16 14:47:36 +00:00
|
|
|
* Thu Sep 16 2004 Dan Walsh <dwalsh@redhat.com> 1.17.12-2
|
|
|
|
- Add selinux_removable_context_path
|
|
|
|
|
2004-09-15 14:14:10 +00:00
|
|
|
* Tue Sep 14 2004 Dan Walsh <dwalsh@redhat.com> 1.17.12-1
|
|
|
|
- Update from NSA
|
|
|
|
* Add matchmediacon
|
|
|
|
|
2004-09-14 13:43:57 +00:00
|
|
|
* Tue Sep 14 2004 Dan Walsh <dwalsh@redhat.com> 1.17.11-1
|
|
|
|
- Update from NSA
|
2004-09-15 14:14:10 +00:00
|
|
|
* Merged in matchmediacon changes.
|
2004-09-14 13:43:57 +00:00
|
|
|
|
|
|
|
* Fri Sep 10 2004 Dan Walsh <dwalsh@redhat.com> 1.17.10-1
|
2004-09-10 18:40:42 +00:00
|
|
|
- Update from NSA
|
|
|
|
* Regenerated headers for new nscd permissions.
|
|
|
|
|
2004-09-10 17:27:19 +00:00
|
|
|
* Wed Sep 8 2004 Dan Walsh <dwalsh@redhat.com> 1.17.9-2
|
|
|
|
- Add matchmediacon
|
|
|
|
|
2004-09-09 07:46:10 +00:00
|
|
|
* Wed Sep 8 2004 Dan Walsh <dwalsh@redhat.com> 1.17.9-1
|
|
|
|
- Update from NSA
|
|
|
|
* Added get_default_context_with_role.
|
|
|
|
|
2004-09-09 07:45:58 +00:00
|
|
|
* Thu Sep 2 2004 Dan Walsh <dwalsh@redhat.com> 1.17.8-2
|
|
|
|
- Clean up spec file
|
|
|
|
* Patch from Matthias Saou
|
|
|
|
|
2004-09-09 07:45:53 +00:00
|
|
|
* Thu Sep 2 2004 Dan Walsh <dwalsh@redhat.com> 1.17.8-1
|
|
|
|
- Update from NSA
|
|
|
|
* Added set_matchpathcon_printf.
|
|
|
|
|
|
|
|
* Wed Sep 1 2004 Dan Walsh <dwalsh@redhat.com> 1.17.7-1
|
2004-09-09 07:45:43 +00:00
|
|
|
- Update from NSA
|
|
|
|
* Reworked av_inherit.h to allow easier re-use by kernel.
|
|
|
|
|
2004-09-09 07:45:35 +00:00
|
|
|
* Tue Aug 31 2004 Dan Walsh <dwalsh@redhat.com> 1.17.6-1
|
|
|
|
- Add strcasecmp in selinux_config
|
|
|
|
- Update from NSA
|
|
|
|
* Changed avc_has_perm_noaudit to not fail on netlink errors.
|
|
|
|
* Changed avc netlink code to check pid based on patch by Steve Grubb.
|
|
|
|
* Merged second optimization patch from Ulrich Drepper.
|
|
|
|
* Changed matchpathcon to skip invalid file_contexts entries.
|
|
|
|
* Made string tables private to libselinux.
|
|
|
|
* Merged strcat->stpcpy patch from Ulrich Drepper.
|
|
|
|
* Merged matchpathcon man page from Dan Walsh.
|
|
|
|
* Merged patch to eliminate PLTs for local syms from Ulrich Drepper.
|
|
|
|
* Autobind netlink socket.
|
|
|
|
* Dropped compatibility code from security_compute_user.
|
|
|
|
* Merged fix for context_range_set from Chad Hanson.
|
|
|
|
* Merged allocation failure checking patch from Chad Hanson.
|
|
|
|
* Merged avc netlink error message patch from Colin Walters.
|
|
|
|
|
|
|
|
|
2004-09-09 07:45:27 +00:00
|
|
|
* Mon Aug 30 2004 Dan Walsh <dwalsh@redhat.com> 1.17.5-1
|
|
|
|
- Update from NSA
|
|
|
|
* Merged second optimization patch from Ulrich Drepper.
|
|
|
|
* Changed matchpathcon to skip invalid file_contexts entries.
|
|
|
|
* Made string tables private to libselinux.
|
|
|
|
* Merged strcat->stpcpy patch from Ulrich Drepper.
|
|
|
|
* Merged matchpathcon man page from Dan Walsh.
|
|
|
|
* Merged patch to eliminate PLTs for local syms from Ulrich Drepper.
|
|
|
|
* Autobind netlink socket.
|
|
|
|
* Dropped compatibility code from security_compute_user.
|
|
|
|
* Merged fix for context_range_set from Chad Hanson.
|
|
|
|
* Merged allocation failure checking patch from Chad Hanson.
|
|
|
|
* Merged avc netlink error message patch from Colin Walters.
|
|
|
|
|
2004-09-09 07:45:21 +00:00
|
|
|
* Mon Aug 30 2004 Dan Walsh <dwalsh@redhat.com> 1.17.4-1
|
|
|
|
- Update from NSA
|
|
|
|
- Add optflags
|
|
|
|
|
2004-09-09 07:45:16 +00:00
|
|
|
* Fri Aug 26 2004 Dan Walsh <dwalsh@redhat.com> 1.17.3-1
|
|
|
|
- Update from NSA
|
|
|
|
|
2004-09-09 07:45:13 +00:00
|
|
|
* Thu Aug 26 2004 Dan Walsh <dwalsh@redhat.com> 1.17.2-1
|
|
|
|
- Add matchpathcon man page
|
|
|
|
- Latest from NSA
|
|
|
|
* Merged patch to eliminate PLTs for local syms from Ulrich Drepper.
|
|
|
|
* Autobind netlink socket.
|
|
|
|
* Dropped compatibility code from security_compute_user.
|
|
|
|
* Merged fix for context_range_set from Chad Hanson.
|
|
|
|
* Merged allocation failure checking patch from Chad Hanson.
|
|
|
|
* Merged avc netlink error message patch from Colin Walters.
|
|
|
|
|
2004-09-09 07:45:06 +00:00
|
|
|
* Tue Aug 24 2004 Dan Walsh <dwalsh@redhat.com> 1.17.1-1
|
|
|
|
- Latest from NSA
|
|
|
|
* Autobind netlink socket.
|
|
|
|
* Dropped compatibility code from security_compute_user.
|
|
|
|
* Merged fix for context_range_set from Chad Hanson.
|
|
|
|
* Merged allocation failure checking patch from Chad Hanson.
|
|
|
|
* Merged avc netlink error message patch from Colin Walters.
|
|
|
|
|
2004-09-09 07:44:55 +00:00
|
|
|
* Sun Aug 22 2004 Dan Walsh <dwalsh@redhat.com> 1.16.1-1
|
|
|
|
- Latest from NSA
|
|
|
|
|
2004-09-09 07:44:50 +00:00
|
|
|
* Thu Aug 19 2004 Colin Walters <walters@redhat.com> 1.16-1
|
|
|
|
- New upstream version
|
|
|
|
|
2004-09-09 07:44:47 +00:00
|
|
|
* Tue Aug 17 2004 Dan Walsh <dwalsh@redhat.com> 1.15.7-1
|
|
|
|
- Latest from Upstream
|
|
|
|
|
2004-09-09 07:44:43 +00:00
|
|
|
* Mon Aug 16 2004 Dan Walsh <dwalsh@redhat.com> 1.15.6-1
|
|
|
|
- Fix man pages
|
|
|
|
|
2004-09-09 07:44:40 +00:00
|
|
|
* Mon Aug 16 2004 Dan Walsh <dwalsh@redhat.com> 1.15.5-1
|
|
|
|
- Latest from Upstream
|
|
|
|
|
2004-09-09 07:44:23 +00:00
|
|
|
* Fri Aug 13 2004 Dan Walsh <dwalsh@redhat.com> 1.15.4-1
|
|
|
|
- Latest from Upstream
|
|
|
|
|
2004-09-09 07:44:20 +00:00
|
|
|
* Thu Aug 12 2004 Dan Walsh <dwalsh@redhat.com> 1.15.3-2
|
|
|
|
- Add man page for boolean functions and SELinux
|
|
|
|
|
2004-09-09 07:44:11 +00:00
|
|
|
* Sat Aug 8 2004 Dan Walsh <dwalsh@redhat.com> 1.15.3-1
|
|
|
|
- Latest from NSA
|
|
|
|
|
2004-09-09 07:43:48 +00:00
|
|
|
* Mon Jul 19 2004 Dan Walsh <dwalsh@redhat.com> 1.15.2-1
|
|
|
|
- Latest from NSA
|
|
|
|
|
2004-09-09 07:43:46 +00:00
|
|
|
* Mon Jul 19 2004 Dan Walsh <dwalsh@redhat.com> 1.15.1-3
|
|
|
|
- uppercase getenforce returns, to make them match system-config-securitylevel
|
|
|
|
|
|
|
|
* Thu Jul 15 2004 Dan Walsh <dwalsh@redhat.com> 1.15.1-2
|
|
|
|
- Remove old path patch
|
|
|
|
|
2004-09-09 07:43:41 +00:00
|
|
|
* Thu Jul 8 2004 Dan Walsh <dwalsh@redhat.com> 1.15.1-1
|
|
|
|
- Update to latest from NSA
|
|
|
|
- Add fix to only get old path if file_context file exists in old location
|
|
|
|
|
2004-09-09 07:43:37 +00:00
|
|
|
* Wed Jun 30 2004 Dan Walsh <dwalsh@redhat.com> 1.14.1-1
|
|
|
|
- Update to latest from NSA
|
|
|
|
|
2004-09-09 07:43:32 +00:00
|
|
|
* Wed Jun 16 2004 Dan Walsh <dwalsh@redhat.com> 1.13.4-1
|
|
|
|
- add nlclass patch
|
|
|
|
- Update to latest from NSA
|
|
|
|
|
2004-09-09 07:43:27 +00:00
|
|
|
* Tue Jun 15 2004 Elliot Lee <sopwith@redhat.com>
|
|
|
|
- rebuilt
|
|
|
|
|
2004-09-09 07:43:22 +00:00
|
|
|
* Sat Jun 13 2004 Dan Walsh <dwalsh@redhat.com> 1.13.3-2
|
|
|
|
- Fix selinux_config to break once it finds SELINUXTYPE.
|
|
|
|
|
2004-09-09 07:42:52 +00:00
|
|
|
* Fri May 28 2004 Dan Walsh <dwalsh@redhat.com> 1.13.2-1
|
|
|
|
-Update with latest from NSA
|
|
|
|
|
2004-09-09 07:42:50 +00:00
|
|
|
* Thu May 27 2004 Dan Walsh <dwalsh@redhat.com> 1.13.1-1
|
|
|
|
- Change to use new policy mechanism
|
|
|
|
|
2004-09-09 07:42:46 +00:00
|
|
|
* Mon May 17 2004 Dan Walsh <dwalsh@redhat.com> 1.12-2
|
|
|
|
- add man patch
|
|
|
|
|
|
|
|
* Thu May 14 2004 Dan Walsh <dwalsh@redhat.com> 1.12-1
|
|
|
|
- Update with latest from NSA
|
|
|
|
|
2004-09-09 07:42:26 +00:00
|
|
|
* Wed May 5 2004 Dan Walsh <dwalsh@redhat.com> 1.11.4-1
|
|
|
|
- Update with latest from NSA
|
|
|
|
|
|
|
|
* Thu Apr 22 2004 Dan Walsh <dwalsh@redhat.com> 1.11.3-1
|
|
|
|
- Add changes for relaxed policy
|
|
|
|
- Update to match NSA
|
|
|
|
|
|
|
|
* Thu Apr 15 2004 Dan Walsh <dwalsh@redhat.com> 1.11.2-1
|
|
|
|
- Add relaxed policy changes
|
|
|
|
|
|
|
|
* Thu Apr 15 2004 Dan Walsh <dwalsh@redhat.com> 1.11-4
|
|
|
|
- Sync with NSA
|
|
|
|
|
|
|
|
* Thu Apr 15 2004 Dan Walsh <dwalsh@redhat.com> 1.11-3
|
|
|
|
- Remove requires glibc>2.3.4
|
|
|
|
|
|
|
|
* Wed Apr 14 2004 Dan Walsh <dwalsh@redhat.com> 1.11-2
|
|
|
|
- Fix selinuxenabled man page.
|
|
|
|
|
|
|
|
* Wed Apr 7 2004 Dan Walsh <dwalsh@redhat.com> 1.11-1
|
|
|
|
- Upgrade to 1.11
|
|
|
|
|
|
|
|
* Wed Apr 7 2004 Dan Walsh <dwalsh@redhat.com> 1.10-2
|
|
|
|
- Add memleaks patch
|
|
|
|
|
|
|
|
* Wed Apr 7 2004 Dan Walsh <dwalsh@redhat.com> 1.10-1
|
|
|
|
- Upgrade to latest from NSA and add more man pages
|
|
|
|
|
|
|
|
* Thu Apr 1 2004 Dan Walsh <dwalsh@redhat.com> 1.9-1
|
|
|
|
- Update to match NSA
|
|
|
|
- Cleanup some man pages
|
|
|
|
|
|
|
|
* Tue Mar 30 2004 Dan Walsh <dwalsh@redhat.com> 1.8-1
|
|
|
|
- Upgrade to latest from NSA
|
|
|
|
|
|
|
|
* Thu Mar 25 2004 Dan Walsh <dwalsh@redhat.com> 1.6-6
|
|
|
|
- Add Russell's Man pages
|
|
|
|
|
|
|
|
* Thu Mar 25 2004 Dan Walsh <dwalsh@redhat.com> 1.6-5
|
|
|
|
- Change getenforce to also check is_selinux_enabled
|
|
|
|
|
|
|
|
* Thu Mar 25 2004 Dan Walsh <dwalsh@redhat.com> 1.6-4
|
|
|
|
- Add ownership to /usr/include/selinux
|
|
|
|
|
2004-09-09 07:41:46 +00:00
|
|
|
* Wed Mar 10 2004 Dan Walsh <dwalsh@redhat.com> 1.6-3
|
|
|
|
- fix location of file_contexts file.
|
|
|
|
|
|
|
|
* Wed Mar 10 2004 Dan Walsh <dwalsh@redhat.com> 1.6-2
|
|
|
|
- Fix matchpathcon to use BUFSIZ
|
|
|
|
|
|
|
|
* Tue Mar 02 2004 Elliot Lee <sopwith@redhat.com>
|
|
|
|
- rebuilt
|
|
|
|
|
|
|
|
* Mon Feb 23 2004 Dan Walsh <dwalsh@redhat.com> 1.4-11
|
|
|
|
- add matchpathcon
|
|
|
|
|
|
|
|
* Fri Feb 13 2004 Elliot Lee <sopwith@redhat.com>
|
|
|
|
- rebuilt
|
2004-09-09 07:41:25 +00:00
|
|
|
|
|
|
|
* Fri Jan 23 2004 Dan Walsh <dwalsh@redhat.com> 1.4-9
|
|
|
|
- Add rootok patch
|
|
|
|
|
|
|
|
* Wed Jan 14 2004 Dan Walsh <dwalsh@redhat.com> 1.4-8
|
|
|
|
- Updated getpeernam patch
|
|
|
|
|
|
|
|
* Tue Jan 13 2004 Dan Walsh <dwalsh@redhat.com> 1.4-7
|
|
|
|
- Add getpeernam patch
|
|
|
|
|
|
|
|
* Thu Dec 18 2003 Dan Walsh <dwalsh@redhat.com> 1.4-6
|
|
|
|
- Add getpeercon patch
|
|
|
|
|
|
|
|
* Thu Dec 18 2003 Dan Walsh <dwalsh@redhat.com> 1.4-5
|
|
|
|
- Put mntpoint patch, because found fix for SysVinit
|
|
|
|
|
|
|
|
* Wed Dec 17 2003 Dan Walsh <dwalsh@redhat.com> 1.4-4
|
|
|
|
- Add remove mntpoint patch, because it breaks SysVinit
|
|
|
|
|
|
|
|
* Wed Dec 17 2003 Dan Walsh <dwalsh@redhat.com> 1.4-3
|
|
|
|
- Add mntpoint patch for SysVinit
|
|
|
|
|
|
|
|
* Fri Dec 12 2003 Dan Walsh <dwalsh@redhat.com> 1.4-2
|
|
|
|
- Add -r -u -t to getcon
|
|
|
|
|
|
|
|
* Sat Dec 6 2003 Dan Walsh <dwalsh@redhat.com> 1.4-1
|
|
|
|
- Upgrade to latest from NSA
|
|
|
|
|
|
|
|
* Mon Oct 27 2003 Dan Walsh <dwalsh@redhat.com> 1.3-2
|
|
|
|
- Fix x86_64 build
|
|
|
|
|
|
|
|
* Wed Oct 21 2003 Dan Walsh <dwalsh@redhat.com> 1.3-1
|
|
|
|
- Latest tarball from NSA.
|
|
|
|
|
|
|
|
* Tue Oct 21 2003 Dan Walsh <dwalsh@redhat.com> 1.2-9
|
|
|
|
- Update with latest changes from NSA
|
|
|
|
|
|
|
|
* Mon Oct 20 2003 Dan Walsh <dwalsh@redhat.com> 1.2-8
|
|
|
|
- Change location of .so file
|
|
|
|
|
|
|
|
* Wed Oct 8 2003 Dan Walsh <dwalsh@redhat.com> 1.2-7
|
|
|
|
- Break out into development library
|
|
|
|
|
|
|
|
* Wed Oct 8 2003 Dan Walsh <dwalsh@redhat.com> 1.2-6
|
|
|
|
- Move location of libselinux.so to /lib
|
|
|
|
|
|
|
|
* Fri Oct 3 2003 Dan Walsh <dwalsh@redhat.com> 1.2-5
|
|
|
|
- Add selinuxenabled patch
|
|
|
|
|
|
|
|
* Wed Oct 1 2003 Dan Walsh <dwalsh@redhat.com> 1.2-4
|
|
|
|
- Update with final NSA 1.2 sources.
|
|
|
|
|
|
|
|
* Fri Sep 12 2003 Dan Walsh <dwalsh@redhat.com> 1.2-3
|
|
|
|
- Update with latest from NSA.
|
|
|
|
|
|
|
|
* Fri Aug 28 2003 Dan Walsh <dwalsh@redhat.com> 1.2-2
|
|
|
|
- Fix to build on x86_64
|
|
|
|
|
|
|
|
* Thu Aug 21 2003 Dan Walsh <dwalsh@redhat.com> 1.2-1
|
|
|
|
- update for version 1.2
|
|
|
|
|
|
|
|
* Wed May 27 2003 Dan Walsh <dwalsh@redhat.com> 1.0-1
|
|
|
|
- Initial version
|
|
|
|
|