Commit Graph

64 Commits

Author SHA1 Message Date
Daniel J Walsh
37bc4557e3 - Don't strip mls context if selinux is not enabled. 2005-11-08 19:09:28 +00:00
Daniel J Walsh
9f412a6358 - Change default to __default__ 2005-10-26 20:32:58 +00:00
Daniel J Walsh
54939fac9a - Add selinux_translations_path 2005-10-25 22:03:43 +00:00
Daniel J Walsh
78dc042098 - Update to latest from NSA
Merged get_default_context_with_rolelevel and man pages from Dan Walsh (Red
    Hat).
Updated call to sepol_policydb_to_image for sepol changes.
Changed getseuserbyname to ignore empty lines and to handle no matching
    entry in the same manner as no seusers file.
2005-10-18 18:27:41 +00:00
Daniel J Walsh
61427961fc - 2005-10-17 18:19:07 +00:00
Daniel J Walsh
4dc4d104e7 - Fix patch to satisfy upstream 2005-09-29 21:35:43 +00:00
Daniel J Walsh
bebb529bd5 - Update to latest from NSA
- Add getseuserbyname
2005-09-29 02:12:47 +00:00
Daniel J Walsh
e8346fc44d - Fix patch call 2005-09-19 17:36:11 +00:00
Daniel J Walsh
fedf8202cb - Fix patch call 2005-09-16 19:53:29 +00:00
Daniel J Walsh
b86cfc3a43 - Fix strip_con call 2005-09-16 18:42:27 +00:00
Daniel J Walsh
96ff98944c - Go back to original libsetrans code 2005-09-16 17:43:14 +00:00
Daniel J Walsh
c2b28e3158 - Go back to original libsetrans code 2005-09-13 21:21:50 +00:00
Daniel J Walsh
bc0a935c8c - Eliminate forth param from mls context when mls is not enabled. 2005-09-13 16:48:16 +00:00
Daniel J Walsh
017ea0e76c - Update from NSA
Merged modified form of patch to avoid dlopen/dlclose by the static
    libselinux from Dan Walsh. Users of the static libselinux will not have
    any context translation by default.
2005-09-12 15:52:30 +00:00
Daniel J Walsh
59d6552e7d - Update from NSA
Added public functions to export context translation to users of libselinux
    (selinux_trans_to_raw_context, selinux_raw_to_trans_context).
2005-09-01 15:23:17 +00:00
Daniel J Walsh
d3d9f9e7f8 - Update from NSA
Hid translation-related symbols entirely and ensured that raw functions
    have hidden definitions for internal use.
Allowed setting NULL via context_set* functions.
Allowed whitespace in MLS component of context.
Changed rpm_execcon to use translated functions to workaround lack of MLS
    level on upgraded systems.
2005-08-25 20:21:14 +00:00
Daniel J Walsh
e7e35da33b Merged context translation patch, originally by TCS, with modifications by
Dan Walsh (Red Hat).
2005-08-24 13:15:02 +00:00
Daniel J Walsh
1f935e2ec7 - Update from NSA
Merged several fixes for error handling paths in the AVC sidtab,
    matchpathcon, booleans, context, and get_context_list code from Serge
    Hallyn (IBM). Bugs found by Coverity.
Removed setupns; migrated to pam.
Merged patches to rename checkPasswdAccess() from Joshua Brindle. Original
    symbol is temporarily retained for compatibility until all callers are
    updated.
2005-08-12 02:46:49 +00:00
Daniel J Walsh
44200d6b78 - Update makefiles 2005-07-18 19:15:29 +00:00
Daniel J Walsh
67d0acbf49 - Update from NSA
Merged security_setupns() from Chad Sellers.
- fix selinuxenabled man page
2005-06-29 20:04:50 +00:00
Daniel J Walsh
8456bc124a - Fix avcstat to clear totals 2005-05-11 15:00:11 +00:00
Daniel J Walsh
8371f522b4 - Fix avcstat to clear totals 2005-05-11 14:48:34 +00:00
Daniel J Walsh
d3be4d7a20 - Update from NSA
Merged set_selinuxmnt patch from Bill Nottingham (Red Hat).
Rewrote get_ordered_context_list and helpers, including changing logic to
    allow variable MLS fields.
2005-04-29 19:01:28 +00:00
Daniel J Walsh
4ff3f08454 - Add backin matchpathcon 2005-04-21 14:20:57 +00:00
Daniel J Walsh
ce82f572f7 - Fix selinux_policy_root man page 2005-04-13 19:12:02 +00:00
Daniel J Walsh
b83512ff2c - Change assert(selinux_mnt) to if (!selinux_mnt) return -1; 2005-04-13 15:42:02 +00:00
Daniel J Walsh
07da577db2 - Better handling of booleans 2005-03-29 15:33:55 +00:00
Daniel J Walsh
d4111cf41f - Update from NSA
Changed matchpathcon_common to ignore any non-format bits in the mode.
2005-03-02 04:04:04 +00:00
Daniel J Walsh
e7c97c5559 - Fix matchpathcon on eof. 2005-02-21 14:25:51 +00:00
Daniel J Walsh
31e19c1580 - Fix matchpathcon on eof. 2005-02-21 14:10:27 +00:00
Daniel J Walsh
8e994c6484 - Update from NSA
Merged matchpathcon patch for file_contexts.homedir from Dan Walsh.
Added selinux_users_path() for path to directory containing system.users
    and local.users.
2005-02-17 19:27:56 +00:00
Daniel J Walsh
03d51ea8f7 - Process file_context.homedir 2005-02-11 01:38:47 +00:00
Daniel J Walsh
e0a30a3da4 - rpmexeccon should not fail in permissive mode. 2005-01-24 20:46:24 +00:00
Daniel J Walsh
ca41c6e4bb - fix printf in avcstat 2005-01-21 20:57:55 +00:00
Daniel J Walsh
958b6d4982 - Modify matchpathcon to also process file_contexts.local if it exists 2005-01-18 22:27:57 +00:00
Daniel J Walsh
ae6f77c9ad - Add is_customizable_types function call 2005-01-12 14:37:21 +00:00
Daniel J Walsh
4f73d76fa3 - Fix unitialized variable in avcstat.c 2004-12-27 11:53:31 +00:00
Daniel J Walsh
e836ab9afb fix spec file 2004-12-20 14:25:06 +00:00
Daniel J Walsh
cc63ca70ad - Upgrade to upstream 2004-12-01 01:31:34 +00:00
Daniel J Walsh
6864134300 - Add avcstat program 2004-11-18 21:29:18 +00:00
Daniel J Walsh
4962db3e56 - Add lots of missing man pages 2004-11-15 20:05:55 +00:00
Daniel J Walsh
437c89fe9f - Fix output of getsebool. 2004-11-12 13:03:50 +00:00
Daniel J Walsh
38be80f2c3 - Update from upstream, fix setsebool -P segfault 2004-11-09 14:24:39 +00:00
Daniel J Walsh
828726ceed change setenforce to accept Enforcing. permissive 2004-10-01 18:56:25 +00:00
Daniel J Walsh
72ef06e71f add alpha patch 2004-09-22 12:06:18 +00:00
Daniel J Walsh
dfa5fafe1b add removable_context path 2004-09-16 14:47:36 +00:00
Daniel J Walsh
791a651339 add nscd perms 2004-09-14 13:39:22 +00:00
Daniel J Walsh
9a368c5f7b add matchmediacon 2004-09-10 17:27:19 +00:00
cvsdist
b320ff19bb auto-import libselinux-1.17.7-1 from libselinux-1.17.7-1.src.rpm 2004-09-09 07:45:43 +00:00
cvsdist
e34dcc2219 auto-import changelog data from libselinux-1.17.6-1.src.rpm
Tue Aug 31 2004 Dan Walsh <dwalsh@redhat.com> 1.17.6-1
- Add strcasecmp in selinux_config
- Update from NSA
Changed avc_has_perm_noaudit to not fail on netlink errors.
Changed avc netlink code to check pid based on patch by Steve Grubb.
Merged second optimization patch from Ulrich Drepper.
Changed matchpathcon to skip invalid file_contexts entries.
Made string tables private to libselinux.
Merged strcat->stpcpy patch from Ulrich Drepper.
Merged matchpathcon man page from Dan Walsh.
Merged patch to eliminate PLTs for local syms from Ulrich Drepper.
Autobind netlink socket.
Dropped compatibility code from security_compute_user.
Merged fix for context_range_set from Chad Hanson.
Merged allocation failure checking patch from Chad Hanson.
Merged avc netlink error message patch from Colin Walters.
2004-09-09 07:45:35 +00:00