From 68641343006b818ce41e1ca0ae6b657ab3685ed2 Mon Sep 17 00:00:00 2001 From: Daniel J Walsh Date: Thu, 18 Nov 2004 21:29:18 +0000 Subject: [PATCH] - Add avcstat program --- libselinux-rhat.patch | 340 +++++++++++++++++++++++++++++++++++++----- libselinux.spec | 5 +- 2 files changed, 304 insertions(+), 41 deletions(-) diff --git a/libselinux-rhat.patch b/libselinux-rhat.patch index 791b919..2489bc4 100644 --- a/libselinux-rhat.patch +++ b/libselinux-rhat.patch @@ -1,6 +1,6 @@ diff --exclude-from=exclude -N -u -r nsalibselinux/include/selinux/selinux.h libselinux-1.19.1/include/selinux/selinux.h --- nsalibselinux/include/selinux/selinux.h 2004-10-20 16:31:36.000000000 -0400 -+++ libselinux-1.19.1/include/selinux/selinux.h 2004-11-15 13:09:00.480224539 -0500 ++++ libselinux-1.19.1/include/selinux/selinux.h 2004-11-18 15:27:00.994561786 -0500 @@ -176,7 +176,7 @@ /* Match the specified media and against the media contexts configuration and set *con to refer to the resulting context. @@ -12,17 +12,17 @@ diff --exclude-from=exclude -N -u -r nsalibselinux/include/selinux/selinux.h lib /* diff --exclude-from=exclude -N -u -r nsalibselinux/man/man3/checkPasswdAccess.3 libselinux-1.19.1/man/man3/checkPasswdAccess.3 --- nsalibselinux/man/man3/checkPasswdAccess.3 1969-12-31 19:00:00.000000000 -0500 -+++ libselinux-1.19.1/man/man3/checkPasswdAccess.3 2004-11-15 15:03:55.190387904 -0500 ++++ libselinux-1.19.1/man/man3/checkPasswdAccess.3 2004-11-18 15:27:00.995561673 -0500 @@ -0,0 +1 @@ +.so man3/security_compute_av.3 diff --exclude-from=exclude -N -u -r nsalibselinux/man/man3/context_free.3 libselinux-1.19.1/man/man3/context_free.3 --- nsalibselinux/man/man3/context_free.3 1969-12-31 19:00:00.000000000 -0500 -+++ libselinux-1.19.1/man/man3/context_free.3 2004-11-15 13:52:50.896470350 -0500 ++++ libselinux-1.19.1/man/man3/context_free.3 2004-11-18 15:27:00.996561560 -0500 @@ -0,0 +1 @@ +.so man3/context_new.3 diff --exclude-from=exclude -N -u -r nsalibselinux/man/man3/context_new.3 libselinux-1.19.1/man/man3/context_new.3 --- nsalibselinux/man/man3/context_new.3 1969-12-31 19:00:00.000000000 -0500 -+++ libselinux-1.19.1/man/man3/context_new.3 2004-11-15 14:57:41.295569385 -0500 ++++ libselinux-1.19.1/man/man3/context_new.3 2004-11-18 15:27:00.997561447 -0500 @@ -0,0 +1,53 @@ +.TH "context_new" "3" "15 November 2004" "dwalsh@redhat.com" "SELinux API documentation" +.SH "NAME" @@ -79,47 +79,47 @@ diff --exclude-from=exclude -N -u -r nsalibselinux/man/man3/context_new.3 libsel + diff --exclude-from=exclude -N -u -r nsalibselinux/man/man3/context_range_get.3 libselinux-1.19.1/man/man3/context_range_get.3 --- nsalibselinux/man/man3/context_range_get.3 1969-12-31 19:00:00.000000000 -0500 -+++ libselinux-1.19.1/man/man3/context_range_get.3 2004-11-15 13:53:26.882410545 -0500 ++++ libselinux-1.19.1/man/man3/context_range_get.3 2004-11-18 15:27:00.998561335 -0500 @@ -0,0 +1 @@ +.so man3/context_new.3 diff --exclude-from=exclude -N -u -r nsalibselinux/man/man3/context_range_set.3 libselinux-1.19.1/man/man3/context_range_set.3 --- nsalibselinux/man/man3/context_range_set.3 1969-12-31 19:00:00.000000000 -0500 -+++ libselinux-1.19.1/man/man3/context_range_set.3 2004-11-15 13:53:29.743087814 -0500 ++++ libselinux-1.19.1/man/man3/context_range_set.3 2004-11-18 15:27:00.999561222 -0500 @@ -0,0 +1 @@ +.so man3/context_new.3 diff --exclude-from=exclude -N -u -r nsalibselinux/man/man3/context_role_get.3 libselinux-1.19.1/man/man3/context_role_get.3 --- nsalibselinux/man/man3/context_role_get.3 1969-12-31 19:00:00.000000000 -0500 -+++ libselinux-1.19.1/man/man3/context_role_get.3 2004-11-15 13:53:19.851203781 -0500 ++++ libselinux-1.19.1/man/man3/context_role_get.3 2004-11-18 15:27:01.035557160 -0500 @@ -0,0 +1 @@ +.so man3/context_new.3 diff --exclude-from=exclude -N -u -r nsalibselinux/man/man3/context_role_set.3 libselinux-1.19.1/man/man3/context_role_set.3 --- nsalibselinux/man/man3/context_role_set.3 1969-12-31 19:00:00.000000000 -0500 -+++ libselinux-1.19.1/man/man3/context_role_set.3 2004-11-15 13:53:21.655000283 -0500 ++++ libselinux-1.19.1/man/man3/context_role_set.3 2004-11-18 15:27:01.036557048 -0500 @@ -0,0 +1 @@ +.so man3/context_new.3 diff --exclude-from=exclude -N -u -r nsalibselinux/man/man3/context_type_get.3 libselinux-1.19.1/man/man3/context_type_get.3 --- nsalibselinux/man/man3/context_type_get.3 1969-12-31 19:00:00.000000000 -0500 -+++ libselinux-1.19.1/man/man3/context_type_get.3 2004-11-15 13:52:56.782806275 -0500 ++++ libselinux-1.19.1/man/man3/context_type_get.3 2004-11-18 15:27:01.037556935 -0500 @@ -0,0 +1 @@ +.so man3/context_new.3 diff --exclude-from=exclude -N -u -r nsalibselinux/man/man3/context_type_set.3 libselinux-1.19.1/man/man3/context_type_set.3 --- nsalibselinux/man/man3/context_type_set.3 1969-12-31 19:00:00.000000000 -0500 -+++ libselinux-1.19.1/man/man3/context_type_set.3 2004-11-15 13:52:58.885569049 -0500 ++++ libselinux-1.19.1/man/man3/context_type_set.3 2004-11-18 15:27:01.038556822 -0500 @@ -0,0 +1 @@ +.so man3/context_new.3 diff --exclude-from=exclude -N -u -r nsalibselinux/man/man3/context_user_get.3 libselinux-1.19.1/man/man3/context_user_get.3 --- nsalibselinux/man/man3/context_user_get.3 1969-12-31 19:00:00.000000000 -0500 -+++ libselinux-1.19.1/man/man3/context_user_get.3 2004-11-15 13:53:11.683125274 -0500 ++++ libselinux-1.19.1/man/man3/context_user_get.3 2004-11-18 15:27:01.040556596 -0500 @@ -0,0 +1 @@ +.so man3/context_new.3 diff --exclude-from=exclude -N -u -r nsalibselinux/man/man3/context_user_set.3 libselinux-1.19.1/man/man3/context_user_set.3 --- nsalibselinux/man/man3/context_user_set.3 1969-12-31 19:00:00.000000000 -0500 -+++ libselinux-1.19.1/man/man3/context_user_set.3 2004-11-15 13:53:13.671900908 -0500 ++++ libselinux-1.19.1/man/man3/context_user_set.3 2004-11-18 15:27:01.041556483 -0500 @@ -0,0 +1 @@ +.so man3/context_new.3 diff --exclude-from=exclude -N -u -r nsalibselinux/man/man3/getcon.3 libselinux-1.19.1/man/man3/getcon.3 --- nsalibselinux/man/man3/getcon.3 2004-10-20 16:31:36.000000000 -0400 -+++ libselinux-1.19.1/man/man3/getcon.3 2004-11-15 14:43:27.459896084 -0500 ++++ libselinux-1.19.1/man/man3/getcon.3 2004-11-18 15:27:01.042556371 -0500 @@ -8,7 +8,9 @@ .br .BI "int getprevcon(security_context_t *" context ); @@ -143,12 +143,12 @@ diff --exclude-from=exclude -N -u -r nsalibselinux/man/man3/getcon.3 libselinux- diff --exclude-from=exclude -N -u -r nsalibselinux/man/man3/get_default_context_with_role.3 libselinux-1.19.1/man/man3/get_default_context_with_role.3 --- nsalibselinux/man/man3/get_default_context_with_role.3 1969-12-31 19:00:00.000000000 -0500 -+++ libselinux-1.19.1/man/man3/get_default_context_with_role.3 2004-11-15 14:26:16.395217127 -0500 ++++ libselinux-1.19.1/man/man3/get_default_context_with_role.3 2004-11-18 15:27:01.043556258 -0500 @@ -0,0 +1 @@ +.so man3/get_ordered_context_list.3 diff --exclude-from=exclude -N -u -r nsalibselinux/man/man3/getexeccon.3 libselinux-1.19.1/man/man3/getexeccon.3 --- nsalibselinux/man/man3/getexeccon.3 2004-10-20 16:31:36.000000000 -0400 -+++ libselinux-1.19.1/man/man3/getexeccon.3 2004-11-15 14:47:55.411666720 -0500 ++++ libselinux-1.19.1/man/man3/getexeccon.3 2004-11-18 15:27:01.044556145 -0500 @@ -8,6 +8,8 @@ .BI "int getexeccon(security_context_t *" context ); .br @@ -172,7 +172,7 @@ diff --exclude-from=exclude -N -u -r nsalibselinux/man/man3/getexeccon.3 libseli diff --exclude-from=exclude -N -u -r nsalibselinux/man/man3/get_ordered_context_list.3 libselinux-1.19.1/man/man3/get_ordered_context_list.3 --- nsalibselinux/man/man3/get_ordered_context_list.3 2004-10-20 16:31:36.000000000 -0400 -+++ libselinux-1.19.1/man/man3/get_ordered_context_list.3 2004-11-15 14:51:52.469922652 -0500 ++++ libselinux-1.19.1/man/man3/get_ordered_context_list.3 2004-11-18 15:27:01.045556032 -0500 @@ -1,6 +1,6 @@ .TH "get_ordered_context_list" "3" "1 January 2004" "russell@coker.com.au" "SE Linux API documentation" .SH "NAME" @@ -211,12 +211,12 @@ diff --exclude-from=exclude -N -u -r nsalibselinux/man/man3/get_ordered_context_ diff --exclude-from=exclude -N -u -r nsalibselinux/man/man3/getpeercon.3 libselinux-1.19.1/man/man3/getpeercon.3 --- nsalibselinux/man/man3/getpeercon.3 1969-12-31 19:00:00.000000000 -0500 -+++ libselinux-1.19.1/man/man3/getpeercon.3 2004-11-15 14:43:44.986918748 -0500 ++++ libselinux-1.19.1/man/man3/getpeercon.3 2004-11-18 15:27:01.046555919 -0500 @@ -0,0 +1 @@ +.so man3/getcon.3 diff --exclude-from=exclude -N -u -r nsalibselinux/man/man3/matchmediacon.3 libselinux-1.19.1/man/man3/matchmediacon.3 --- nsalibselinux/man/man3/matchmediacon.3 1969-12-31 19:00:00.000000000 -0500 -+++ libselinux-1.19.1/man/man3/matchmediacon.3 2004-11-15 14:58:59.423755242 -0500 ++++ libselinux-1.19.1/man/man3/matchmediacon.3 2004-11-18 15:27:01.047555807 -0500 @@ -0,0 +1,26 @@ +.TH "matchmediacon" "3" "15 November 2004" "dwalsh@redhat.com" "SE Linux API documentation" +.SH "NAME" @@ -246,7 +246,7 @@ diff --exclude-from=exclude -N -u -r nsalibselinux/man/man3/matchmediacon.3 libs +.BR freecon "(3) diff --exclude-from=exclude -N -u -r nsalibselinux/man/man3/matchpathcon.3 libselinux-1.19.1/man/man3/matchpathcon.3 --- nsalibselinux/man/man3/matchpathcon.3 2004-10-20 16:31:36.000000000 -0400 -+++ libselinux-1.19.1/man/man3/matchpathcon.3 2004-11-15 14:38:10.211686897 -0500 ++++ libselinux-1.19.1/man/man3/matchpathcon.3 2004-11-18 15:27:01.049555581 -0500 @@ -5,17 +5,22 @@ .SH "SYNOPSIS" .B #include @@ -275,17 +275,17 @@ diff --exclude-from=exclude -N -u -r nsalibselinux/man/man3/matchpathcon.3 libse diff --exclude-from=exclude -N -u -r nsalibselinux/man/man3/rpm_execcon.3 libselinux-1.19.1/man/man3/rpm_execcon.3 --- nsalibselinux/man/man3/rpm_execcon.3 1969-12-31 19:00:00.000000000 -0500 -+++ libselinux-1.19.1/man/man3/rpm_execcon.3 2004-11-15 14:48:21.682702915 -0500 ++++ libselinux-1.19.1/man/man3/rpm_execcon.3 2004-11-18 15:27:01.050555468 -0500 @@ -0,0 +1 @@ +.so man3/getexeccon.3 diff --exclude-from=exclude -N -u -r nsalibselinux/man/man3/security_commit_booleans.3 libselinux-1.19.1/man/man3/security_commit_booleans.3 --- nsalibselinux/man/man3/security_commit_booleans.3 1969-12-31 19:00:00.000000000 -0500 -+++ libselinux-1.19.1/man/man3/security_commit_booleans.3 2004-11-15 14:00:34.815132700 -0500 ++++ libselinux-1.19.1/man/man3/security_commit_booleans.3 2004-11-18 15:27:01.051555355 -0500 @@ -0,0 +1 @@ +.so man3/security_load_booleans.3 diff --exclude-from=exclude -N -u -r nsalibselinux/man/man3/security_compute_av.3 libselinux-1.19.1/man/man3/security_compute_av.3 --- nsalibselinux/man/man3/security_compute_av.3 2004-10-20 16:31:36.000000000 -0400 -+++ libselinux-1.19.1/man/man3/security_compute_av.3 2004-11-15 15:04:53.324829384 -0500 ++++ libselinux-1.19.1/man/man3/security_compute_av.3 2004-11-18 15:27:01.052555242 -0500 @@ -15,6 +15,8 @@ .BI "int security_compute_relabel(security_context_t "scon ", security_context_t "tcon ", security_class_t "tclass ", security_context_t *" newcon ); .sp @@ -307,22 +307,22 @@ diff --exclude-from=exclude -N -u -r nsalibselinux/man/man3/security_compute_av. diff --exclude-from=exclude -N -u -r nsalibselinux/man/man3/security_get_boolean_active.3 libselinux-1.19.1/man/man3/security_get_boolean_active.3 --- nsalibselinux/man/man3/security_get_boolean_active.3 1969-12-31 19:00:00.000000000 -0500 -+++ libselinux-1.19.1/man/man3/security_get_boolean_active.3 2004-11-15 13:59:47.930422066 -0500 ++++ libselinux-1.19.1/man/man3/security_get_boolean_active.3 2004-11-18 15:27:01.053555130 -0500 @@ -0,0 +1 @@ +.so man3/security_load_booleans.3 diff --exclude-from=exclude -N -u -r nsalibselinux/man/man3/security_get_boolean_names.3 libselinux-1.19.1/man/man3/security_get_boolean_names.3 --- nsalibselinux/man/man3/security_get_boolean_names.3 1969-12-31 19:00:00.000000000 -0500 -+++ libselinux-1.19.1/man/man3/security_get_boolean_names.3 2004-11-15 14:01:41.377623357 -0500 ++++ libselinux-1.19.1/man/man3/security_get_boolean_names.3 2004-11-18 15:27:01.055554904 -0500 @@ -0,0 +1 @@ +.so man3/security_load_booleans.3 diff --exclude-from=exclude -N -u -r nsalibselinux/man/man3/security_get_boolean_pending.3 libselinux-1.19.1/man/man3/security_get_boolean_pending.3 --- nsalibselinux/man/man3/security_get_boolean_pending.3 1969-12-31 19:00:00.000000000 -0500 -+++ libselinux-1.19.1/man/man3/security_get_boolean_pending.3 2004-11-15 13:59:30.858348076 -0500 ++++ libselinux-1.19.1/man/man3/security_get_boolean_pending.3 2004-11-18 15:27:01.056554791 -0500 @@ -0,0 +1 @@ +.so man3/security_load_booleans.3 diff --exclude-from=exclude -N -u -r nsalibselinux/man/man3/security_load_booleans.3 libselinux-1.19.1/man/man3/security_load_booleans.3 --- nsalibselinux/man/man3/security_load_booleans.3 1969-12-31 19:00:00.000000000 -0500 -+++ libselinux-1.19.1/man/man3/security_load_booleans.3 2004-11-15 14:59:32.996967632 -0500 ++++ libselinux-1.19.1/man/man3/security_load_booleans.3 2004-11-18 15:27:01.057554678 -0500 @@ -0,0 +1,69 @@ +.TH "security_get_boolean_names" "3" "15 November 2004" "dwalsh@redhat.com" "SELinux API Documentation" +.SH "NAME" @@ -395,12 +395,12 @@ diff --exclude-from=exclude -N -u -r nsalibselinux/man/man3/security_load_boolea +getsebool(8), booleans(8), togglesebool(8) diff --exclude-from=exclude -N -u -r nsalibselinux/man/man3/security_set_boolean.3 libselinux-1.19.1/man/man3/security_set_boolean.3 --- nsalibselinux/man/man3/security_set_boolean.3 1969-12-31 19:00:00.000000000 -0500 -+++ libselinux-1.19.1/man/man3/security_set_boolean.3 2004-11-15 14:00:26.427079010 -0500 ++++ libselinux-1.19.1/man/man3/security_set_boolean.3 2004-11-18 15:27:01.059554453 -0500 @@ -0,0 +1 @@ +.so man3/security_load_booleans.3 diff --exclude-from=exclude -N -u -r nsalibselinux/man/man3/selinux_binary_policy_path.3 libselinux-1.19.1/man/man3/selinux_binary_policy_path.3 --- nsalibselinux/man/man3/selinux_binary_policy_path.3 1969-12-31 19:00:00.000000000 -0500 -+++ libselinux-1.19.1/man/man3/selinux_binary_policy_path.3 2004-11-15 14:20:07.949783828 -0500 ++++ libselinux-1.19.1/man/man3/selinux_binary_policy_path.3 2004-11-18 15:27:01.060554340 -0500 @@ -0,0 +1,75 @@ +.TH "security_get_boolean_names" "3" "15 November 2004" "dwalsh@redhat.com" "SELinux API Documentation" +.SH "NAME" @@ -479,52 +479,84 @@ diff --exclude-from=exclude -N -u -r nsalibselinux/man/man3/selinux_binary_polic + diff --exclude-from=exclude -N -u -r nsalibselinux/man/man3/selinux_booleans_path.3 libselinux-1.19.1/man/man3/selinux_booleans_path.3 --- nsalibselinux/man/man3/selinux_booleans_path.3 1969-12-31 19:00:00.000000000 -0500 -+++ libselinux-1.19.1/man/man3/selinux_booleans_path.3 2004-11-15 14:23:22.441841927 -0500 ++++ libselinux-1.19.1/man/man3/selinux_booleans_path.3 2004-11-18 15:27:01.061554227 -0500 @@ -0,0 +1 @@ +.so man3/selinux_binary_policy_path.3 diff --exclude-from=exclude -N -u -r nsalibselinux/man/man3/selinux_contexts_path.3 libselinux-1.19.1/man/man3/selinux_contexts_path.3 --- nsalibselinux/man/man3/selinux_contexts_path.3 1969-12-31 19:00:00.000000000 -0500 -+++ libselinux-1.19.1/man/man3/selinux_contexts_path.3 2004-11-15 14:23:12.767933303 -0500 ++++ libselinux-1.19.1/man/man3/selinux_contexts_path.3 2004-11-18 15:27:01.062554114 -0500 @@ -0,0 +1 @@ +.so man3/selinux_binary_policy_path.3 diff --exclude-from=exclude -N -u -r nsalibselinux/man/man3/selinux_default_context_path.3 libselinux-1.19.1/man/man3/selinux_default_context_path.3 --- nsalibselinux/man/man3/selinux_default_context_path.3 1969-12-31 19:00:00.000000000 -0500 -+++ libselinux-1.19.1/man/man3/selinux_default_context_path.3 2004-11-15 14:22:35.137178671 -0500 ++++ libselinux-1.19.1/man/man3/selinux_default_context_path.3 2004-11-18 15:27:01.064553889 -0500 @@ -0,0 +1 @@ +.so man3/selinux_binary_policy_path.3 diff --exclude-from=exclude -N -u -r nsalibselinux/man/man3/selinux_failsafe_context_path.3 libselinux-1.19.1/man/man3/selinux_failsafe_context_path.3 --- nsalibselinux/man/man3/selinux_failsafe_context_path.3 1969-12-31 19:00:00.000000000 -0500 -+++ libselinux-1.19.1/man/man3/selinux_failsafe_context_path.3 2004-11-15 14:22:01.123016028 -0500 ++++ libselinux-1.19.1/man/man3/selinux_failsafe_context_path.3 2004-11-18 15:27:01.065553776 -0500 @@ -0,0 +1 @@ +.so man3/selinux_binary_policy_path.3 diff --exclude-from=exclude -N -u -r nsalibselinux/man/man3/selinux_file_context_path.3 libselinux-1.19.1/man/man3/selinux_file_context_path.3 --- nsalibselinux/man/man3/selinux_file_context_path.3 1969-12-31 19:00:00.000000000 -0500 -+++ libselinux-1.19.1/man/man3/selinux_file_context_path.3 2004-11-15 14:22:58.167580463 -0500 ++++ libselinux-1.19.1/man/man3/selinux_file_context_path.3 2004-11-18 15:27:01.066553663 -0500 @@ -0,0 +1 @@ +.so man3/selinux_binary_policy_path.3 diff --exclude-from=exclude -N -u -r nsalibselinux/man/man3/selinux_media_context_path.3 libselinux-1.19.1/man/man3/selinux_media_context_path.3 --- nsalibselinux/man/man3/selinux_media_context_path.3 1969-12-31 19:00:00.000000000 -0500 -+++ libselinux-1.19.1/man/man3/selinux_media_context_path.3 2004-11-15 14:23:03.138019716 -0500 ++++ libselinux-1.19.1/man/man3/selinux_media_context_path.3 2004-11-18 15:27:01.067553550 -0500 @@ -0,0 +1 @@ +.so man3/selinux_binary_policy_path.3 diff --exclude-from=exclude -N -u -r nsalibselinux/man/man3/selinux_removable_context_path.3 libselinux-1.19.1/man/man3/selinux_removable_context_path.3 --- nsalibselinux/man/man3/selinux_removable_context_path.3 1969-12-31 19:00:00.000000000 -0500 -+++ libselinux-1.19.1/man/man3/selinux_removable_context_path.3 2004-11-15 14:22:20.722804849 -0500 ++++ libselinux-1.19.1/man/man3/selinux_removable_context_path.3 2004-11-18 15:27:01.072552986 -0500 @@ -0,0 +1 @@ +.so man3/selinux_binary_policy_path.3 diff --exclude-from=exclude -N -u -r nsalibselinux/man/man3/selinux_user_contexts_path.3 libselinux-1.19.1/man/man3/selinux_user_contexts_path.3 --- nsalibselinux/man/man3/selinux_user_contexts_path.3 1969-12-31 19:00:00.000000000 -0500 -+++ libselinux-1.19.1/man/man3/selinux_user_contexts_path.3 2004-11-15 14:22:46.436903876 -0500 ++++ libselinux-1.19.1/man/man3/selinux_user_contexts_path.3 2004-11-18 15:27:01.073552873 -0500 @@ -0,0 +1 @@ +.so man3/selinux_binary_policy_path.3 diff --exclude-from=exclude -N -u -r nsalibselinux/man/man3/set_matchpathcon_printf.3 libselinux-1.19.1/man/man3/set_matchpathcon_printf.3 --- nsalibselinux/man/man3/set_matchpathcon_printf.3 1969-12-31 19:00:00.000000000 -0500 -+++ libselinux-1.19.1/man/man3/set_matchpathcon_printf.3 2004-11-15 14:38:57.005407796 -0500 ++++ libselinux-1.19.1/man/man3/set_matchpathcon_printf.3 2004-11-18 15:27:01.075552648 -0500 @@ -0,0 +1 @@ +.so man3/matchpathcon.3 +diff --exclude-from=exclude -N -u -r nsalibselinux/man/man8/avcstat.8 libselinux-1.19.1/man/man8/avcstat.8 +--- nsalibselinux/man/man8/avcstat.8 1969-12-31 19:00:00.000000000 -0500 ++++ libselinux-1.19.1/man/man8/avcstat.8 2004-11-18 16:28:55.008507362 -0500 +@@ -0,0 +1,28 @@ ++.TH "avcstat" "8" "18 Nov 2004" "dwalsh@redhat.com" "SELinux Command Line documentation" ++.SH "NAME" ++avcstat \- Display SELinux AVC statistics ++ ++.SH "SYNOPSIS" ++.B avcstat ++.I [-c] [-f status_file] [interval] ++ ++.SH "DESCRIPTION" ++.B avcstat ++ ++Display SELinux AVC statistics. If the interval parameter is specified, the ++program will loop, displaying updated statistics every 'interval' seconds. ++Relative values are displayed by default. ++ ++.SH OPTIONS ++.TP ++.B \-c ++Display the cumulative values. ++ ++.TP ++.B \-f ++Specifies the location of the AVC statistics file, defaulting to '/selinux/avc/cache_stats'. ++ ++.SH AUTHOR ++This manual page was written by Dan Walsh . ++The program was written by James Morris . ++ diff --exclude-from=exclude -N -u -r nsalibselinux/man/man8/getsebool.8 libselinux-1.19.1/man/man8/getsebool.8 --- nsalibselinux/man/man8/getsebool.8 2004-11-02 14:26:19.000000000 -0500 -+++ libselinux-1.19.1/man/man8/getsebool.8 2004-11-12 09:16:43.000000000 -0500 ++++ libselinux-1.19.1/man/man8/getsebool.8 2004-11-18 15:27:01.076552535 -0500 @@ -8,13 +8,12 @@ .SH "DESCRIPTION" @@ -544,9 +576,237 @@ diff --exclude-from=exclude -N -u -r nsalibselinux/man/man8/getsebool.8 libselin The setting of boolean values occurs in two stages; first the pending value is changed, then the booleans are committed, causing their +diff --exclude-from=exclude -N -u -r nsalibselinux/utils/avcstat.c libselinux-1.19.1/utils/avcstat.c +--- nsalibselinux/utils/avcstat.c 1969-12-31 19:00:00.000000000 -0500 ++++ libselinux-1.19.1/utils/avcstat.c 2004-11-18 16:19:13.230149764 -0500 +@@ -0,0 +1,224 @@ ++/* ++ * avcstat - Display SELinux avc statistics. ++ * ++ * Copyright (C) 2004 Red Hat, Inc., James Morris ++ * ++ * This program is free software; you can redistribute it and/or modify ++ * it under the terms of the GNU General Public License version 2, ++ * as published by the Free Software Foundation. ++ * ++ */ ++#include ++#include ++#include ++#include ++#include ++#include ++#include ++#include ++#include ++#include ++#include ++#include ++#include ++ ++#define DEF_STAT_FILE "/avc/cache_stats" ++#define DEF_BUF_SIZE 8192 ++#define HEADERS "lookups hits misses allocations reclaims frees" ++ ++struct avc_cache_stats { ++ unsigned int lookups; ++ unsigned int hits; ++ unsigned int misses; ++ unsigned int allocations; ++ unsigned int reclaims; ++ unsigned int frees; ++}; ++ ++static int interval; ++static int rows; ++static char *progname; ++static char buf[DEF_BUF_SIZE]; ++ ++/* selinuxfs mount point */ ++extern char *selinux_mnt; ++ ++ ++static void die(const char *msg, ...) ++{ ++ va_list args; ++ ++ fputs("ERROR: ", stderr); ++ ++ va_start(args, msg); ++ vfprintf(stderr, msg, args); ++ va_end(args); ++ ++ if (errno) ++ fprintf(stderr, ": %s", strerror(errno)); ++ ++ fputc('\n', stderr); ++ exit(1); ++} ++ ++static void usage(void) ++{ ++ printf("\nUsage: %s [-c] [-f status_file] [interval]\n\n", progname); ++ printf("Display SELinux AVC statistics. If the interval parameter is specified, the\n"); ++ printf("program will loop, displaying updated statistics every \'interval\' seconds.\n"); ++ printf("Relative values are displayed by default. Use the -c option to specify the\n"); ++ printf("display of cumulative values. The -f option specifies the location of the\n"); ++ printf("AVC statistics file, defaulting to \'%s\%s\'.\n\n", selinux_mnt, DEF_STAT_FILE); ++} ++ ++static void set_window_rows(void) ++{ ++ int ret; ++ struct winsize ws; ++ ++ ret = ioctl(fileno(stdout), TIOCGWINSZ, &ws); ++ if (ret < 0 || ws.ws_row < 3) ++ ws.ws_row = 24; ++ rows = ws.ws_row; ++} ++ ++static void sighandler(int num) ++{ ++ if (num == SIGWINCH) ++ set_window_rows(); ++} ++ ++int main(int argc, char **argv) ++{ ++ int fd, i, cumulative = 0; ++ struct sigaction sa; ++ char avcstatfile[PATH_MAX]; ++ snprintf(avcstatfile, sizeof avcstatfile, "%s%s", selinux_mnt, DEF_STAT_FILE); ++ progname = basename(argv[0]); ++ ++ while((i = getopt(argc, argv, "cf:h?-")) != -1) { ++ switch (i) { ++ case 'c': ++ cumulative = 1; ++ break; ++ case 'f': ++ strncpy(avcstatfile, optarg, sizeof avcstatfile); ++ break; ++ case 'h': ++ case '-': ++ usage(); ++ exit(0); ++ default: ++ usage(); ++ die("unrecognized parameter", i); ++ } ++ } ++ ++ if (optind < argc) { ++ char *arg = argv[optind]; ++ unsigned int n = strtoul(arg, NULL, 10); ++ ++ if (errno == ERANGE) { ++ usage(); ++ die("invalid interval \'%s\'", arg); ++ } ++ if (n == 0) { ++ usage(); ++ exit (0); ++ } ++ interval = n; ++ } ++ ++ sa.sa_handler = sighandler; ++ sa.sa_flags = SA_RESTART; ++ ++ i = sigaction(SIGWINCH, &sa, NULL); ++ if (i < 0) ++ die("sigaction"); ++ ++ set_window_rows(); ++ fd = open(avcstatfile, O_RDONLY); ++ if (fd < 0) ++ die("open: \'%s\'", avcstatfile); ++ ++ for (i = 0;; i++) { ++ char *line; ++ ssize_t ret, parsed = 0; ++ struct avc_cache_stats tot, rel, last; ++ ++ memset(buf, 0, DEF_BUF_SIZE); ++ ret = read(fd, buf, DEF_BUF_SIZE); ++ if (ret < 0) ++ die("read"); ++ ++ if (ret == 0) ++ die("read: \'%s\': unexpected end of file", avcstatfile); ++ ++ line = strtok(buf, "\n"); ++ if (!line) ++ die("unable to parse \'%s\': end of line not found", avcstatfile); ++ ++ if (strcmp(line, HEADERS)) ++ die("unable to parse \'%s\': invalid headers", avcstatfile); ++ ++ if (!i || !(i % (rows - 2))) ++ printf("%10s %10s %10s %10s %10s %10s\n", "lookups", ++ "hits", "misses", "allocs", "reclaims", "frees"); ++ ++ memset(&tot, 0, sizeof(tot)); ++ ++ while ((line = strtok(NULL, "\n"))) { ++ struct avc_cache_stats tmp; ++ ++ ret = sscanf(line, "%u %u %u %u %u %u", ++ &tmp.lookups, ++ &tmp.hits, ++ &tmp.misses, ++ &tmp.allocations, ++ &tmp.reclaims, ++ &tmp.frees); ++ if (ret != 6) ++ die("unable to parse \'%s\': scan error", avcstatfile); ++ ++ tot.lookups += tmp.lookups; ++ tot.hits += tmp.hits; ++ tot.misses += tmp.misses; ++ tot.allocations += tmp.allocations; ++ tot.reclaims += tmp.reclaims; ++ tot.frees += tmp.frees; ++ parsed = 1; ++ } ++ ++ if (!parsed) ++ die("unable to parse \'%s\': no data", avcstatfile); ++ ++ if (cumulative || (!cumulative && !i)) ++ printf("%10u %10u %10u %10u %10u %10u\n", ++ tot.lookups, tot.hits, tot.misses, ++ tot.allocations, tot.reclaims, tot.frees); ++ else { ++ rel.lookups = tot.lookups - last.lookups; ++ rel.hits = tot.hits - last.hits; ++ rel.misses = tot.misses - last.misses; ++ rel.allocations = tot.allocations - last.allocations; ++ rel.reclaims = tot.reclaims - last.reclaims; ++ rel.frees = tot.frees - last.frees; ++ printf("%10u %10u %10u %10u %10u %10u\n", ++ rel.lookups, rel.hits, rel.misses, ++ rel.allocations, rel.reclaims, rel.frees); ++ } ++ ++ if (!interval) ++ break; ++ ++ memcpy(&last, &tot, sizeof(last)); ++ sleep(interval); ++ ++ ret = lseek(fd, 0, 0); ++ if (ret < 0) ++ die("lseek"); ++ } ++ ++ close(fd); ++ return 0; ++} diff --exclude-from=exclude -N -u -r nsalibselinux/utils/getsebool.c libselinux-1.19.1/utils/getsebool.c --- nsalibselinux/utils/getsebool.c 2004-11-09 09:13:54.000000000 -0500 -+++ libselinux-1.19.1/utils/getsebool.c 2004-11-12 09:16:43.000000000 -0500 ++++ libselinux-1.19.1/utils/getsebool.c 2004-11-18 15:27:01.077552422 -0500 @@ -83,8 +83,14 @@ rc = -1; goto out; @@ -566,7 +826,7 @@ diff --exclude-from=exclude -N -u -r nsalibselinux/utils/getsebool.c libselinux- out: diff --exclude-from=exclude -N -u -r nsalibselinux/utils/setsebool.c libselinux-1.19.1/utils/setsebool.c --- nsalibselinux/utils/setsebool.c 2004-11-09 09:13:54.000000000 -0500 -+++ libselinux-1.19.1/utils/setsebool.c 2004-11-12 09:16:43.000000000 -0500 ++++ libselinux-1.19.1/utils/setsebool.c 2004-11-18 15:27:01.078552309 -0500 @@ -35,6 +35,8 @@ if (strcmp(argv[1], "-P") == 0) { diff --git a/libselinux.spec b/libselinux.spec index b83bd82..298f109 100644 --- a/libselinux.spec +++ b/libselinux.spec @@ -1,7 +1,7 @@ Summary: SELinux library and simple utilities Name: libselinux Version: 1.19.1 -Release: 4 +Release: 5 License: Public domain (uncopyrighted) Group: System Environment/Libraries Source: http://www.nsa.gov/selinux/archives/libselinux-%{version}.tgz @@ -85,6 +85,9 @@ rm -rf ${RPM_BUILD_ROOT} %{_mandir}/man8/* %changelog +* Thu Nov 18 2004 Dan Walsh 1.19.1-5 +- Add avcstat program + * Mon Nov 15 2004 Dan Walsh 1.19.1-4 - Add lots of missing man pages