rpms/libselinux
6
0
Fork 0
Code Issues Pull Requests Releases Activity

Commit Graph

  • 61427961fc - Daniel J Walsh 2005-10-17 18:19:07 +0000
  • d5c6e72c48 - Tell init to reexec itself in post script Daniel J Walsh 2005-10-14 16:11:08 +0000
  • c521275b65 - Update to latest from NSA Changed selinux_mkload_policy to try downgrading the latest policy version available to the kernel-supported version. Changed selinux_mkload_policy to fall back to the maximum policy version supported by libsepol if the kernel policy version falls outside of the supported range. Daniel J Walsh 2005-10-14 12:34:19 +0000
  • 555e97b002 - Update to latest from NSA Changed getseuserbyname to fall back to the Linux username and NULL level if seusers config file doesn't exist unless REQUIRESEUSERS=1 is set in /etc/selinux/config. Moved seusers.conf under $SELINUXTYPE and renamed to seusers. Daniel J Walsh 2005-10-13 13:12:23 +0000
  • b19e5c854f - Update to latest from NSA Changed getseuserbyname to fall back to the Linux username and NULL level if seusers config file doesn't exist unless REQUIRESEUSERS=1 is set in /etc/selinux/config. Moved seusers.conf under $SELINUXTYPE and renamed to seusers. Daniel J Walsh 2005-10-07 14:09:21 +0000
  • 33b55398a2 - Update to latest from NSA Added selinux_init_load_policy() function as an even higher level interface for the initial policy load by /sbin/init. This obsoletes the load_policy() function in the sysvinit-selinux.patch. Added selinux_mkload_policy() function as a higher level interface for loading policy than the security_load_policy() interface. Daniel J Walsh 2005-10-06 19:03:52 +0000
  • 90c2814893 - Update to latest from NSA Merged fix for matchpathcon (regcomp error checking) from Johan Fischer. Also added use of regerror to obtain the error string for inclusion in the error message. Daniel J Walsh 2005-10-06 13:21:54 +0000
  • f76369a096 - Update to latest from NSA Changed getseuserbyname to not require (and ignore if present) the MLS level in seusers.conf if MLS is disabled, setting *level to NULL in this case. Daniel J Walsh 2005-10-04 15:43:00 +0000
  • 1cfd4dc1a6 - Update to latest from NSA Merged getseuserbyname patch from Dan Walsh. Daniel J Walsh 2005-10-03 13:14:47 +0000
  • 4dc4d104e7 - Fix patch to satisfy upstream Daniel J Walsh 2005-09-29 21:35:43 +0000
  • bebb529bd5 - Update to latest from NSA - Add getseuserbyname Daniel J Walsh 2005-09-29 02:12:47 +0000
  • e8346fc44d - Fix patch call Daniel J Walsh 2005-09-19 17:36:11 +0000
  • fedf8202cb - Fix patch call Daniel J Walsh 2005-09-16 19:53:29 +0000
  • b86cfc3a43 - Fix strip_con call Daniel J Walsh 2005-09-16 18:42:27 +0000
  • 96ff98944c - Go back to original libsetrans code Daniel J Walsh 2005-09-16 17:43:14 +0000
  • c2b28e3158 - Go back to original libsetrans code Daniel J Walsh 2005-09-13 21:21:50 +0000
  • bc0a935c8c - Eliminate forth param from mls context when mls is not enabled. Daniel J Walsh 2005-09-13 16:48:16 +0000
  • 017ea0e76c - Update from NSA Merged modified form of patch to avoid dlopen/dlclose by the static libselinux from Dan Walsh. Users of the static libselinux will not have any context translation by default. Daniel J Walsh 2005-09-12 15:52:30 +0000
  • 99ddec8d69 - Update from NSA Merged modified form of patch to avoid dlopen/dlclose by the static libselinux from Dan Walsh. Users of the static libselinux will not have any context translation by default. Daniel J Walsh 2005-09-06 16:41:47 +0000
  • 59d6552e7d - Update from NSA Added public functions to export context translation to users of libselinux (selinux_trans_to_raw_context, selinux_raw_to_trans_context). Daniel J Walsh 2005-09-01 15:23:17 +0000
  • eb500fb164 - Update from NSA Remove special definition for context_range_set; use common code. Daniel J Walsh 2005-08-29 11:59:41 +0000
  • d3d9f9e7f8 - Update from NSA Hid translation-related symbols entirely and ensured that raw functions have hidden definitions for internal use. Allowed setting NULL via context_set* functions. Allowed whitespace in MLS component of context. Changed rpm_execcon to use translated functions to workaround lack of MLS level on upgraded systems. Daniel J Walsh 2005-08-25 20:21:14 +0000
  • e7e35da33b Merged context translation patch, originally by TCS, with modifications by Dan Walsh (Red Hat). Daniel J Walsh 2005-08-24 13:15:02 +0000
  • 1f935e2ec7 - Update from NSA Merged several fixes for error handling paths in the AVC sidtab, matchpathcon, booleans, context, and get_context_list code from Serge Hallyn (IBM). Bugs found by Coverity. Removed setupns; migrated to pam. Merged patches to rename checkPasswdAccess() from Joshua Brindle. Original symbol is temporarily retained for compatibility until all callers are updated. Daniel J Walsh 2005-08-12 02:46:49 +0000
  • 856cdc49d0 - Update makefiles Daniel J Walsh 2005-07-21 15:58:45 +0000
  • 44200d6b78 - Update makefiles Daniel J Walsh 2005-07-18 19:15:29 +0000
  • 67d0acbf49 - Update from NSA Merged security_setupns() from Chad Sellers. - fix selinuxenabled man page Daniel J Walsh 2005-06-29 20:04:50 +0000
  • 661867eccf - Update from NSA Merged avcstat and selinux man page from Dan Walsh. Changed security_load_booleans to process booleans.local even if booleans file doesn't exist. Fri Apr 26 2005 Dan Walsh <dwalsh@redhat.com> 1.23.10-3 - Fix avcstat to clear totals Daniel J Walsh 2005-05-20 17:18:49 +0000
  • 8456bc124a - Fix avcstat to clear totals Daniel J Walsh 2005-05-11 15:00:11 +0000
  • 8371f522b4 - Fix avcstat to clear totals Daniel J Walsh 2005-05-11 14:48:34 +0000
  • 8f3fa78bf6 - Add info to man page Daniel J Walsh 2005-04-29 19:03:45 +0000
  • d3be4d7a20 - Update from NSA Merged set_selinuxmnt patch from Bill Nottingham (Red Hat). Rewrote get_ordered_context_list and helpers, including changing logic to allow variable MLS fields. Daniel J Walsh 2005-04-29 19:01:28 +0000
  • 3127b94941 - Update from NSA Merged set_selinuxmnt patch from Bill Nottingham (Red Hat). Rewrote get_ordered_context_list and helpers, including changing logic to allow variable MLS fields. Daniel J Walsh 2005-04-29 18:11:40 +0000
  • d7bbd88ea0 - Update from NSA Daniel J Walsh 2005-04-26 16:25:57 +0000
  • 4ff3f08454 - Add backin matchpathcon Daniel J Walsh 2005-04-21 14:20:57 +0000
  • ce82f572f7 - Fix selinux_policy_root man page Daniel J Walsh 2005-04-13 19:12:02 +0000
  • b83512ff2c - Change assert(selinux_mnt) to if (!selinux_mnt) return -1; Daniel J Walsh 2005-04-13 15:42:02 +0000
  • e39f335d11 - Update from NSA Fixed bug in matchpathcon_filespec_destroy. Daniel J Walsh 2005-04-11 20:11:29 +0000
  • 5b866cc468 - Update from NSA Fixed bug in rpm_execcon error handling path. Daniel J Walsh 2005-04-06 11:06:40 +0000
  • 03a50e15ab - Update from NSA Merged fix for set_matchpathcon* functions from Andreas Steinmetz. Merged fix for getconlist utility from Andreas Steinmetz. Daniel J Walsh 2005-04-04 20:17:21 +0000
  • fbe330170e - Update from NSA Daniel J Walsh 2005-03-30 03:12:14 +0000
  • c74c56d735 - Update from NSA Daniel J Walsh 2005-03-30 03:02:38 +0000
  • 07da577db2 - Better handling of booleans Daniel J Walsh 2005-03-29 15:33:55 +0000
  • e037587aca - Update from NSA Merged destructors patch from Tomas Mraz. Daniel J Walsh 2005-03-17 20:01:37 +0000
  • d432883eeb - Update from NSA Added set_matchpathcon_flags() function for setting flags controlling operation of matchpathcon. MATCHPATHCON_BASEONLY means only process the base file_contexts file, not file_contexts.homedirs or file_contexts.local, and is for use by setfiles -c. Updated matchpathcon.3 man page. Daniel J Walsh 2005-03-17 15:39:58 +0000
  • 8e67581eb8 - Update from NSA Daniel J Walsh 2005-03-10 14:44:02 +0000
  • adbca5042d - Update from NSA Fixed bug in matchpathcon_filespec_add() - failure to clear fl_head. Daniel J Walsh 2005-03-08 20:15:20 +0000
  • d4111cf41f - Update from NSA Changed matchpathcon_common to ignore any non-format bits in the mode. Daniel J Walsh 2005-03-02 04:04:04 +0000
  • 1ec9b46064 - Update from NSA Merged several fixes from Ulrich Drepper. Daniel J Walsh 2005-02-22 22:12:25 +0000
  • 4cc1ca9316 - Update from NSA Merged several fixes from Ulrich Drepper. Daniel J Walsh 2005-02-22 21:38:09 +0000
  • e7c97c5559 - Fix matchpathcon on eof. Daniel J Walsh 2005-02-21 14:25:51 +0000
  • 31e19c1580 - Fix matchpathcon on eof. Daniel J Walsh 2005-02-21 14:10:27 +0000
  • 8e994c6484 - Update from NSA Merged matchpathcon patch for file_contexts.homedir from Dan Walsh. Added selinux_users_path() for path to directory containing system.users and local.users. Daniel J Walsh 2005-02-17 19:27:56 +0000
  • 03d51ea8f7 - Process file_context.homedir Daniel J Walsh 2005-02-11 01:38:47 +0000
  • 34474bcbb4 - Update from NSA Changed relabel Makefile target to use restorecon. Daniel J Walsh 2005-02-10 13:48:34 +0000
  • e508830eca - Update from NSA Regenerated av_permissions.h. Daniel J Walsh 2005-02-08 21:20:55 +0000
  • 38db1503a7 add nsadiff stuff Daniel J Walsh 2005-02-07 21:39:56 +0000
  • 3fbeee478d - Update from NSA Modified avc_dump_av to explicitly check for any permissions that cannot be mapped to string names and display them as a hex value. Regenerated av_permissions.h. Daniel J Walsh 2005-02-02 23:18:13 +0000
  • 8851687ce1 - Update from NSA Generalized matchpathcon internals, exported more interfaces, and moved additional code from setfiles into libselinux so that setfiles can directly use matchpathcon. Daniel J Walsh 2005-01-31 18:51:58 +0000
  • 1d69704875 - Update from NSA Prevent overflow of spec array in matchpathcon. Fixed several uses of internal functions to avoid relocations. Changed rpm_execcon to check is_selinux_enabled() and fallback to a regular execve if not enabled (or unable to determine due to a lack of /proc, e.g. chroot'd environment). Daniel J Walsh 2005-01-28 17:19:20 +0000
  • cc65d5b546 - Update from NSA Merged minor fix for avcstat from Dan Walsh. Daniel J Walsh 2005-01-26 16:36:33 +0000
  • e0a30a3da4 - rpmexeccon should not fail in permissive mode. Daniel J Walsh 2005-01-24 20:46:24 +0000
  • ca41c6e4bb - fix printf in avcstat Daniel J Walsh 2005-01-21 20:57:55 +0000
  • e1e9d62ce4 - Update from NSA Daniel J Walsh 2005-01-20 13:58:18 +0000
  • 958b6d4982 - Modify matchpathcon to also process file_contexts.local if it exists Daniel J Walsh 2005-01-18 22:27:57 +0000
  • ae6f77c9ad - Add is_customizable_types function call Daniel J Walsh 2005-01-12 14:37:21 +0000
  • dffd9eaafd - Update to latest from upstream Just changing version number to match upstream Daniel J Walsh 2005-01-07 14:48:24 +0000
  • c88fca683f - Update to latest from upstream Changed matchpathcon to return -1 with errno ENOENT for <<none>> entries, and also for an empty file_contexts configuration. Daniel J Walsh 2004-12-29 17:08:58 +0000
  • 7aa4e97275 - Fix link devel libraries Daniel J Walsh 2004-12-28 15:40:26 +0000
  • 4f73d76fa3 - Fix unitialized variable in avcstat.c Daniel J Walsh 2004-12-27 11:53:31 +0000
  • e836ab9afb fix spec file Daniel J Walsh 2004-12-20 14:25:06 +0000
  • 8ecfe2db4e - Upgrade to upstream Removed some trivial utils that were not useful or redundant. Changed BINDIR default to /usr/sbin to match change in Fedora. Added security_compute_member. Added man page for setcon. Daniel J Walsh 2004-12-03 19:41:58 +0000
  • cc63ca70ad - Upgrade to upstream Daniel J Walsh 2004-12-01 01:31:34 +0000
  • 5d71053bd0 - Add avcstat program Daniel J Walsh 2004-11-18 21:30:11 +0000
  • 6864134300 - Add avcstat program Daniel J Walsh 2004-11-18 21:29:18 +0000
  • 2a0f8bbed9 - Add lots of missing man pages Daniel J Walsh 2004-11-15 20:13:52 +0000
  • 4962db3e56 - Add lots of missing man pages Daniel J Walsh 2004-11-15 20:05:55 +0000
  • 437c89fe9f - Fix output of getsebool. Daniel J Walsh 2004-11-12 13:03:50 +0000
  • 38be80f2c3 - Update from upstream, fix setsebool -P segfault Daniel J Walsh 2004-11-09 14:24:39 +0000
  • 37dbcb478d added patch from upstream Steve Grubb 2004-11-05 22:26:36 +0000
  • 407b1fe335 - More fixes from sgrubb, better syslog Daniel J Walsh 2004-11-04 18:25:37 +0000
  • aed8abc66c spec file correction. Steve Grubb 2004-11-04 17:30:03 +0000
  • efa62ac4a5 - Have sesebool log to syslog Daniel J Walsh 2004-11-04 15:50:24 +0000
  • 35c4f2492c fix spec file Daniel J Walsh 2004-11-03 20:55:44 +0000
  • 71b3b1c0e0 Add patch to make setsebool update bool on disk. Make togglesebool have a rollback capability in case it blows up inflight. Steve Grubb 2004-11-03 20:50:26 +0000
  • cfb1f307ae - Upgrade to latest from NSA Daniel J Walsh 2004-11-02 19:47:54 +0000
  • 1d320842ce Updated 2 previous patches to output Usage before checking if selinux is enabled. Apply a patch that fixes signed/unsigned issues and a memory leak. Steve Grubb 2004-11-01 18:56:08 +0000
  • 76a08583da Move utilities to /usr/sbin Steve Grubb 2004-10-28 21:25:27 +0000
  • 4af2226534 Adding patches for specfile Steve Grubb 2004-10-27 20:53:11 +0000
  • b2c3e1fca2 add -g to build and update with rpmexec Daniel J Walsh 2004-10-15 13:42:33 +0000
  • 224faef153 update to NSA version Daniel J Walsh 2004-10-06 14:03:28 +0000
  • 828726ceed change setenforce to accept Enforcing. permissive Daniel J Walsh 2004-10-01 18:56:25 +0000
  • 72ef06e71f add alpha patch Daniel J Walsh 2004-09-22 12:06:18 +0000
  • 228dd64e4f latest from NSA Daniel J Walsh 2004-09-20 19:50:16 +0000
  • dfa5fafe1b add removable_context path Daniel J Walsh 2004-09-16 14:47:36 +0000
  • 0474ff5fef NSA Cleanup Daniel J Walsh 2004-09-15 14:14:10 +0000
  • 39b34ebda7 latest from NSA Daniel J Walsh 2004-09-14 13:43:57 +0000
  • 791a651339 add nscd perms Daniel J Walsh 2004-09-14 13:39:22 +0000
  • dcf4ba68c9 latest from NSA Daniel J Walsh 2004-09-10 18:40:42 +0000
  • 9a368c5f7b add matchmediacon Daniel J Walsh 2004-09-10 17:27:19 +0000