Daniel J Walsh
a69064eb95
- Update to upstream
...
Add pkgconfig file from Eamon Walsh.
2009-11-02 18:01:05 +00:00
Daniel J Walsh
8a570f443e
- Update to upstream
...
Rename and export selinux_reset_config()
2009-10-29 19:36:32 +00:00
Daniel J Walsh
510eba6977
- Update to upstream
...
Add exception handling in libselinux from Dan Walsh. This uses a shell
script called exception.sh to generate a swig interface file.
make swigify
Make matchpathcon print <<none>> if path not found in fcontext file.
2009-09-28 20:33:26 +00:00
Daniel J Walsh
d3cc14428b
- Eliminate -pthread switch in Makefile
2009-09-15 19:24:22 +00:00
Daniel J Walsh
9afde8153b
- Update to upstream
...
Removal of reference counting on userspace AVC SID's.
2009-09-08 13:09:19 +00:00
Jesse Keating
0762b6438c
- Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild
2009-07-25 08:35:31 +00:00
Daniel J Walsh
fa621852dc
- Update to upstream
...
Reverted Tomas Mraz's fix for freeing thread local storage to avoid pthread
dependency.
Removed fini_context_translations() altogether.
Merged lazy init patch from Stephen Smalley based on original patch by
Steve Grubb.
2009-07-14 15:29:55 +00:00
Daniel J Walsh
23660c5dba
- Update to upstream
...
Add per-service seuser support from Dan Walsh.
Let load_policy gracefully handle selinuxfs being mounted from Stephen
Smalley.
Check /proc/filesystems before /proc/mounts for selinuxfs from Eric Paris.
2009-07-07 16:26:11 +00:00
Daniel J Walsh
94187eeda7
- Add provices ruby(selinux)
2009-06-24 21:37:23 +00:00
Daniel J Walsh
a66522107b
- Update to upstream
...
Fix improper use of thread local storage from Tomas Mraz
<tmraz@redhat.com>.
Label substitution support from Dan Walsh.
Support for labeling virtual machine images from Dan Walsh.
2009-06-23 19:54:03 +00:00
Daniel J Walsh
403bfa5085
- Update to upstream
...
Trim / from the end of input paths to matchpathcon from Dan Walsh.
Fix leak in process_line in label_file.c from Hiroshi Shinji.
Move matchpathcon to /sbin, add matchpathcon to clean target from Dan
Walsh.
getdefaultcon to print just the correct match and add verbose option from
Dan Walsh.
2009-05-18 18:22:22 +00:00
Daniel J Walsh
c1ed6edd9a
- Update to upstream
...
deny_unknown wrapper function from KaiGai Kohei.
security_compute_av_flags API from KaiGai Kohei.
Netlink socket management and callbacks from KaiGai Kohei.
2009-04-08 13:08:53 +00:00
Daniel J Walsh
d6eb0cea47
- Fix Memory Leak
2009-04-03 12:58:07 +00:00
Daniel J Walsh
261c72abdb
- Fix crash in python
2009-04-02 13:36:47 +00:00
Daniel J Walsh
f6ba4d34de
- Add back in additional interfaces
2009-03-29 15:18:28 +00:00
Daniel J Walsh
55f4c91ff1
- Add back in av_decision to python swig
2009-03-27 20:39:31 +00:00
Daniel J Walsh
974a6e4ad2
- Add back in av_decision to python swig
2009-03-27 18:25:16 +00:00
Daniel J Walsh
c86e2e8d59
- Update to upstream
...
Netlink socket handoff patch from Adam Jackson.
AVC caching of compute_create results by Eric Paris.
2009-03-12 12:57:57 +00:00
Daniel J Walsh
ada6d88f6b
- Add eparis patch to accellerate Xwindows performance
2009-03-09 15:52:25 +00:00
Daniel J Walsh
79bb8b19a2
- Fix URL
2009-03-09 14:03:12 +00:00
Daniel J Walsh
3da9d84fdc
- Add substitute pattern
...
- matchpathcon output <<none>> on ENOENT
2009-03-06 21:31:10 +00:00
Daniel J Walsh
07ae258133
- Update to upstream
...
Fix incorrect conversion in discover_class code.
2009-03-02 18:21:46 +00:00
Jesse Keating
5b3b3ee4ad
- Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild
2009-02-25 18:01:00 +00:00
Daniel J Walsh
19dec57f82
- Add
...
- selinux_virtual_domain_context_path
- selinux_virtual_image_context_path
2009-02-18 19:45:23 +00:00
Daniel J Walsh
6396f115b4
- Add
...
- selinux_virtual_domain_context_path
- selinux_virtual_image_context_path
2009-02-18 18:29:42 +00:00
Daniel J Walsh
b5b41bc929
- Throw exeptions in python swig bindings on failures
2009-01-27 20:00:47 +00:00
Daniel J Walsh
c1e059f764
- Fix restorecon python code
2009-01-06 15:44:49 +00:00
Daniel J Walsh
49eae3b63b
- Update to upstream
2009-01-06 14:31:47 +00:00
Daniel J Walsh
e672e99f9d
- Strip trailing / for matchpathcon
2008-12-19 20:17:53 +00:00
Daniel J Walsh
0c692a5a64
- Fix segfault if seusers file does not work
2008-12-16 14:38:49 +00:00
Daniel J Walsh
d9847be233
- Add new function getseuser which will take username and service and
...
return
- seuser and level. ipa will populate file in future.
- Change selinuxdefcon to return just the context by default
2008-12-12 16:15:27 +00:00
Daniel J Walsh
cd000f17c0
- Add new function getseuser which will take username and service and
...
return
- seuser and level. ipa will populate file in future.
- Change selinuxdefcon to return just the context by default
2008-12-12 15:21:10 +00:00
Ignacio Vazquez-Abrams
fdb97bc4bb
Rebuild for Python 2.6
2008-11-29 16:48:05 +00:00
Daniel J Walsh
f53982306d
- Update to Upstream
...
Allow shell-style wildcards in x_contexts file.
2008-11-21 21:06:11 +00:00
Daniel J Walsh
41931f8d57
- Eamon Walsh Patch - libselinux: allow shell-style wildcarding in X names
...
- Add Restorecon/Install python functions from Luke Macken
2008-11-17 15:27:48 +00:00
Daniel J Walsh
d3b013d124
- Update to Upstream
...
Correct message types in AVC log messages.
Make matchpathcon -V pass mode from Dan Walsh.
Add man page for selinux_file_context_cmp from Dan Walsh.
2008-11-07 14:08:36 +00:00
Daniel J Walsh
3898d8da39
- Update to Upstream
...
New man pages from Dan Walsh.
Update flask headers from refpolicy trunk from Dan Walsh.
2008-09-30 13:30:18 +00:00
Daniel J Walsh
263ee4f1ec
- Fix matchpathcon -V call
2008-09-26 14:22:14 +00:00
Daniel J Walsh
3578778806
- Add flask definitions for open, X and nlmsg_tty_audit
2008-09-22 17:52:30 +00:00
Daniel J Walsh
15c5a627bc
- Add missing get/setkeycreatecon man pages
2008-09-09 20:24:22 +00:00
Daniel J Walsh
fa0215ab2a
- Split out utilities
2008-09-09 19:07:33 +00:00
Daniel J Walsh
ac4e772e3d
- Add missing man page links for [lf]getfilecon
2008-09-09 18:45:26 +00:00
Daniel J Walsh
7918b2858e
- Update to Upstream
...
Add group support to seusers using %groupname syntax from Dan Walsh.
Mark setrans socket close-on-exec from Stephen Smalley.
Only apply nodups checking to base file contexts from Stephen Smalley.
2008-08-05 14:05:15 +00:00
Daniel J Walsh
86ce8d44b1
- Update to Upstream
...
Merge ruby bindings from Dan Walsh.
- Add support for Linux groups to getseuserbyname
2008-08-01 10:56:37 +00:00
Daniel J Walsh
0397b472b7
- Update to Upstream
...
Handle duplicate file context regexes as a fatal error from Stephen
Smalley. This prevents adding them via semanage.
Fix audit2why shadowed variables from Stephen Smalley.
Note that freecon NULL is legal in man page from Karel Zak.
2008-07-29 18:37:01 +00:00
Daniel J Walsh
d0a06b2c34
- Update to Upstream
...
Handle duplicate file context regexes as a fatal error from Stephen
Smalley. This prevents adding them via semanage.
Fix audit2why shadowed variables from Stephen Smalley.
Note that freecon NULL is legal in man page from Karel Zak.
2008-07-29 13:22:45 +00:00
Daniel J Walsh
ee778682f8
- Add ruby support for puppet
2008-07-09 20:57:21 +00:00
Daniel J Walsh
c56d166bb6
- Rebuild for new libsepol
2008-07-08 12:07:38 +00:00
Daniel J Walsh
ea56feab06
- Add Karel Zak patch for freecon man page
2008-06-29 12:31:00 +00:00
Daniel J Walsh
e434a93ac5
- Update to Upstream
...
New and revised AVC, label, and mapping man pages from Eamon Walsh.
Add swig python bindings for avc interfaces from Dan Walsh.
2008-06-26 12:14:16 +00:00
Daniel J Walsh
6359e2ad79
- Update to Upstream
...
New and revised AVC, label, and mapping man pages from Eamon Walsh.
Add swig python bindings for avc interfaces from Dan Walsh.
2008-06-22 13:48:37 +00:00
Daniel J Walsh
fc4f6a4f7d
- Update to Upstream
...
Fix selinux_file_context_verify() and selinux_lsetfilecon_default() to call
matchpathcon_init_prefix if not already initialized.
Add -q qualifier for -V option of matchpathcon and change it to indicate
whether verification succeeded or failed via exit status.
2008-06-22 13:42:52 +00:00
Daniel J Walsh
bff583b68b
- Update to Upstream
...
Fix selinux_file_context_verify() and selinux_lsetfilecon_default() to call
matchpathcon_init_prefix if not already initialized.
Add -q qualifier for -V option of matchpathcon and change it to indicate
whether verification succeeded or failed via exit status.
2008-05-28 14:15:30 +00:00
Daniel J Walsh
454774e22d
remove telinit -u, no longer needed
2008-05-16 19:04:17 +00:00
Daniel J Walsh
792921f4eb
- Add sedefaultcon and setconlist commands to dump login context
2008-05-07 17:34:12 +00:00
Daniel J Walsh
1209c857ab
- Update to Upstream
...
Fixed selinux_set_callback man page.
Try loading the max of the kernel-supported version and the
libsepol-supported version when no manipulation of the binary policy is
needed from Stephen Smalley.
Fix memory leaks in matchpathcon from Eamon Walsh.
2008-04-22 20:59:01 +00:00
Daniel J Walsh
d87adcfe95
- Add avc.h to swig code
2008-04-14 18:54:09 +00:00
Daniel J Walsh
9d13c9cd97
- Update to Upstream
...
Man page typo fix from Jim Meyering.
2008-04-01 04:16:52 +00:00
Daniel J Walsh
7384c1ecca
Changed selinux_init_load_policy() to not warn about a failed mount of
...
selinuxfs if selinux was disabled in the kernel.
2008-03-23 11:32:37 +00:00
Daniel J Walsh
eb8e2a0d36
- Fix matchpathcon memory leak
2008-03-13 23:45:19 +00:00
Daniel J Walsh
4594aed06b
- Update to Upstream
...
Merged new X label "poly_selection" namespace from Eamon Walsh.
2008-02-29 20:24:11 +00:00
Daniel J Walsh
0984abe5d8
- Update to Upstream
...
Merged reset_selinux_config() for load policy from Dan Walsh.
2008-02-28 21:06:47 +00:00
Daniel J Walsh
baab9d46ea
- Reload library on loading of policy to handle chroot
2008-02-28 16:58:02 +00:00
Daniel J Walsh
73272f9b7d
- Update to Upstream
...
Merged avc_has_perm() errno fix from Eamon Walsh.
2008-02-25 20:51:42 +00:00
Daniel J Walsh
3cb08a5330
- Update to Upstream
...
Regenerated Flask headers from refpolicy flask definitions.
2008-02-22 17:41:12 +00:00
Daniel J Walsh
198adb1f17
- Update to Upstream
...
Merged compute_member AVC function and manpages from Eamon Walsh.
Provide more error reporting on load policy failures from Stephen Smalley.
2008-02-13 16:18:16 +00:00
Daniel J Walsh
099d39a6e5
- Update to Upstream
...
Merged new X label "poly_prop" namespace from Eamon Walsh.
2008-02-08 15:45:10 +00:00
Daniel J Walsh
fc1475fc7f
- Update to Upstream
...
Disable setlocaldefs if no local boolean or users files are present from
Stephen Smalley.
Skip userspace preservebools processing for Linux >= 2.6.22 from Stephen
Smalley.
2008-02-06 21:46:59 +00:00
Daniel J Walsh
8f9ecf5890
- Update to Upstream
...
Merged fix for audit2why from Dan Walsh.
2008-01-29 13:29:32 +00:00
Daniel J Walsh
213643620c
- Fix audit2why to grab latest policy versus the one selected by the kernel
2008-01-25 16:11:42 +00:00
Daniel J Walsh
e4623197a5
Merged audit2why python binding from Dan Walsh.
2008-01-23 21:52:01 +00:00
Daniel J Walsh
c633d69a56
Merged updated swig bindings from Dan Walsh, including typemap for pid_t.
2008-01-23 19:40:26 +00:00
Daniel J Walsh
c097aeffd4
- Update to use libsepol-static library
2008-01-21 21:42:38 +00:00
Daniel J Walsh
45460445ad
- Put back libselinux.a
2008-01-15 13:49:29 +00:00
Daniel J Walsh
5c1daf361c
- Put back libselinux.a
2008-01-15 13:48:24 +00:00
Daniel J Walsh
2f233dfd7a
- Fix memory references in audit2why and change to use tuples
...
- Update to Upstream
granted null message bug from Stephen Smalley.
2008-01-11 15:55:35 +00:00
Daniel J Walsh
88cc8f8805
- Fix __init__.py specification
2008-01-11 13:48:43 +00:00
Daniel J Walsh
831e63b413
- Add audit2why python bindings
2008-01-10 19:01:20 +00:00
Daniel J Walsh
d189708d7a
- Add audit2why python bindings
2008-01-10 19:00:33 +00:00
Daniel J Walsh
4676dbee55
- Add audit2why python bindings
2008-01-10 18:44:50 +00:00
Daniel J Walsh
082b5c93a4
- Add audit2why python bindings
2008-01-10 18:44:01 +00:00
Daniel J Walsh
9ec7726e1d
- Add audit2why python bindings
2008-01-10 18:32:52 +00:00
Daniel J Walsh
625a8fb5a8
- Add pid_t typemap for swig bindings
2008-01-08 11:07:27 +00:00
Daniel J Walsh
5866f48366
- smp_mflag
2008-01-03 20:39:20 +00:00
Daniel J Walsh
e1e36a0421
- Fix spec file caused by spec review
2008-01-03 20:29:21 +00:00
Daniel J Walsh
41bd3b2ae1
- Upgrade to upstream
...
matchpathcon(8) man page update from Dan Walsh.
2007-12-11 02:52:13 +00:00
Daniel J Walsh
c4aa29e945
- Upgrade to upstream
...
dlopen libsepol.so.1 rather than libsepol.so from Stephen Smalley.
Based on a suggestion from Ulrich Drepper, defer regex compilation until we
have a stem match, by Stephen Smalley.
A further optimization would be to defer regex compilation until we have a
complete match of the constant prefix of the regex - TBD.
2007-11-30 20:13:08 +00:00
Daniel J Walsh
2a8f17ac0d
- Upgrade to upstream
...
AVC enforcing mode override patch from Eamon Walsh.
Aligned attributes in AVC netlink code from Eamon Walsh.
- Move libselinux.so back into devel package, procps has been fixed
2007-11-15 15:29:15 +00:00
Daniel J Walsh
79584e53ac
- Upgrade to upstream
...
Merged refactored AVC netlink code from Eamon Walsh.
Merged new X label namespaces from Eamon Walsh.
Bux fix and minor refactoring in string representation code.
2007-11-06 18:03:37 +00:00
Daniel J Walsh
39606ee687
- Upgrade to upstream
...
Merged selinux_get_callback, avc_open, empty string mapping from Eamon
Walsh.
2007-10-05 17:20:30 +00:00
Daniel J Walsh
dcd9773ab2
- Fix segfault on missing file_context file
2007-09-27 17:55:13 +00:00
Daniel J Walsh
7cbfb0e27a
- Upgrade to upstream
...
Make netlink socket close-on-exec to avoid descriptor leakage from Dan
Walsh.
Pass CFLAGS when using gcc for linking from Dennis Gilmore.
2007-09-27 14:54:10 +00:00
Daniel J Walsh
ae054c560b
*** empty log message ***
2007-09-24 15:56:01 +00:00
Daniel J Walsh
0102138c4a
*** empty log message ***
2007-09-24 15:42:11 +00:00
Daniel J Walsh
0fa749d083
*** empty log message ***
2007-09-18 20:44:47 +00:00
Daniel J Walsh
71cd1381ef
*** empty log message ***
2007-09-18 15:37:42 +00:00
Daniel J Walsh
31de56ffa4
*** empty log message ***
2007-09-13 12:29:38 +00:00
Daniel J Walsh
6a9919e596
*** empty log message ***
2007-09-06 12:37:00 +00:00
Daniel J Walsh
4e3172796e
*** empty log message ***
2007-08-28 15:27:49 +00:00
Daniel J Walsh
13a4ef3ffe
*** empty log message ***
2007-08-23 20:56:16 +00:00