b86cfc3a43- Fix strip_con call
Daniel J Walsh
2005-09-16 18:42:27 +0000
96ff98944c- Go back to original libsetrans code
Daniel J Walsh
2005-09-16 17:43:14 +0000
c2b28e3158- Go back to original libsetrans code
Daniel J Walsh
2005-09-13 21:21:50 +0000
bc0a935c8c- Eliminate forth param from mls context when mls is not enabled.
Daniel J Walsh
2005-09-13 16:48:16 +0000
017ea0e76c- Update from NSA Merged modified form of patch to avoid dlopen/dlclose by the static libselinux from Dan Walsh. Users of the static libselinux will not have any context translation by default.
Daniel J Walsh
2005-09-12 15:52:30 +0000
99ddec8d69- Update from NSA Merged modified form of patch to avoid dlopen/dlclose by the static libselinux from Dan Walsh. Users of the static libselinux will not have any context translation by default.
Daniel J Walsh
2005-09-06 16:41:47 +0000
59d6552e7d- Update from NSA Added public functions to export context translation to users of libselinux (selinux_trans_to_raw_context, selinux_raw_to_trans_context).
Daniel J Walsh
2005-09-01 15:23:17 +0000
eb500fb164- Update from NSA Remove special definition for context_range_set; use common code.
Daniel J Walsh
2005-08-29 11:59:41 +0000
d3d9f9e7f8- Update from NSA Hid translation-related symbols entirely and ensured that raw functions have hidden definitions for internal use. Allowed setting NULL via context_set* functions. Allowed whitespace in MLS component of context. Changed rpm_execcon to use translated functions to workaround lack of MLS level on upgraded systems.
Daniel J Walsh
2005-08-25 20:21:14 +0000
e7e35da33bMerged context translation patch, originally by TCS, with modifications by Dan Walsh (Red Hat).
Daniel J Walsh
2005-08-24 13:15:02 +0000
1f935e2ec7- Update from NSA Merged several fixes for error handling paths in the AVC sidtab, matchpathcon, booleans, context, and get_context_list code from Serge Hallyn (IBM). Bugs found by Coverity. Removed setupns; migrated to pam. Merged patches to rename checkPasswdAccess() from Joshua Brindle. Original symbol is temporarily retained for compatibility until all callers are updated.
Daniel J Walsh
2005-08-12 02:46:49 +0000
856cdc49d0- Update makefiles
Daniel J Walsh
2005-07-21 15:58:45 +0000
44200d6b78- Update makefiles
Daniel J Walsh
2005-07-18 19:15:29 +0000
67d0acbf49- Update from NSA Merged security_setupns() from Chad Sellers. - fix selinuxenabled man page
Daniel J Walsh
2005-06-29 20:04:50 +0000
661867eccf- Update from NSA Merged avcstat and selinux man page from Dan Walsh. Changed security_load_booleans to process booleans.local even if booleans file doesn't exist. Fri Apr 26 2005 Dan Walsh <dwalsh@redhat.com> 1.23.10-3 - Fix avcstat to clear totals
Daniel J Walsh
2005-05-20 17:18:49 +0000
8456bc124a- Fix avcstat to clear totals
Daniel J Walsh
2005-05-11 15:00:11 +0000
8371f522b4- Fix avcstat to clear totals
Daniel J Walsh
2005-05-11 14:48:34 +0000
8f3fa78bf6- Add info to man page
Daniel J Walsh
2005-04-29 19:03:45 +0000
d3be4d7a20- Update from NSA Merged set_selinuxmnt patch from Bill Nottingham (Red Hat). Rewrote get_ordered_context_list and helpers, including changing logic to allow variable MLS fields.
Daniel J Walsh
2005-04-29 19:01:28 +0000
3127b94941- Update from NSA Merged set_selinuxmnt patch from Bill Nottingham (Red Hat). Rewrote get_ordered_context_list and helpers, including changing logic to allow variable MLS fields.
Daniel J Walsh
2005-04-29 18:11:40 +0000
d7bbd88ea0- Update from NSA
Daniel J Walsh
2005-04-26 16:25:57 +0000
4ff3f08454- Add backin matchpathcon
Daniel J Walsh
2005-04-21 14:20:57 +0000
ce82f572f7- Fix selinux_policy_root man page
Daniel J Walsh
2005-04-13 19:12:02 +0000
b83512ff2c- Change assert(selinux_mnt) to if (!selinux_mnt) return -1;
Daniel J Walsh
2005-04-13 15:42:02 +0000
e39f335d11- Update from NSA Fixed bug in matchpathcon_filespec_destroy.
Daniel J Walsh
2005-04-11 20:11:29 +0000
5b866cc468- Update from NSA Fixed bug in rpm_execcon error handling path.
Daniel J Walsh
2005-04-06 11:06:40 +0000
03a50e15ab- Update from NSA Merged fix for set_matchpathcon* functions from Andreas Steinmetz. Merged fix for getconlist utility from Andreas Steinmetz.
Daniel J Walsh
2005-04-04 20:17:21 +0000
fbe330170e- Update from NSA
Daniel J Walsh
2005-03-30 03:12:14 +0000
c74c56d735- Update from NSA
Daniel J Walsh
2005-03-30 03:02:38 +0000
07da577db2- Better handling of booleans
Daniel J Walsh
2005-03-29 15:33:55 +0000
e037587aca- Update from NSA Merged destructors patch from Tomas Mraz.
Daniel J Walsh
2005-03-17 20:01:37 +0000
d432883eeb- Update from NSA Added set_matchpathcon_flags() function for setting flags controlling operation of matchpathcon. MATCHPATHCON_BASEONLY means only process the base file_contexts file, not file_contexts.homedirs or file_contexts.local, and is for use by setfiles -c. Updated matchpathcon.3 man page.
Daniel J Walsh
2005-03-17 15:39:58 +0000
8e67581eb8- Update from NSA
Daniel J Walsh
2005-03-10 14:44:02 +0000
adbca5042d- Update from NSA Fixed bug in matchpathcon_filespec_add() - failure to clear fl_head.
Daniel J Walsh
2005-03-08 20:15:20 +0000
d4111cf41f- Update from NSA Changed matchpathcon_common to ignore any non-format bits in the mode.
Daniel J Walsh
2005-03-02 04:04:04 +0000
1ec9b46064- Update from NSA Merged several fixes from Ulrich Drepper.
Daniel J Walsh
2005-02-22 22:12:25 +0000
4cc1ca9316- Update from NSA Merged several fixes from Ulrich Drepper.
Daniel J Walsh
2005-02-22 21:38:09 +0000
e7c97c5559- Fix matchpathcon on eof.
Daniel J Walsh
2005-02-21 14:25:51 +0000
31e19c1580- Fix matchpathcon on eof.
Daniel J Walsh
2005-02-21 14:10:27 +0000
8e994c6484- Update from NSA Merged matchpathcon patch for file_contexts.homedir from Dan Walsh. Added selinux_users_path() for path to directory containing system.users and local.users.
Daniel J Walsh
2005-02-17 19:27:56 +0000
03d51ea8f7- Process file_context.homedir
Daniel J Walsh
2005-02-11 01:38:47 +0000
34474bcbb4- Update from NSA Changed relabel Makefile target to use restorecon.
Daniel J Walsh
2005-02-10 13:48:34 +0000
e508830eca- Update from NSA Regenerated av_permissions.h.
Daniel J Walsh
2005-02-08 21:20:55 +0000
38db1503a7add nsadiff stuff
Daniel J Walsh
2005-02-07 21:39:56 +0000
3fbeee478d- Update from NSA Modified avc_dump_av to explicitly check for any permissions that cannot be mapped to string names and display them as a hex value. Regenerated av_permissions.h.
Daniel J Walsh
2005-02-02 23:18:13 +0000
8851687ce1- Update from NSA Generalized matchpathcon internals, exported more interfaces, and moved additional code from setfiles into libselinux so that setfiles can directly use matchpathcon.
Daniel J Walsh
2005-01-31 18:51:58 +0000
1d69704875- Update from NSA Prevent overflow of spec array in matchpathcon. Fixed several uses of internal functions to avoid relocations. Changed rpm_execcon to check is_selinux_enabled() and fallback to a regular execve if not enabled (or unable to determine due to a lack of /proc, e.g. chroot'd environment).
Daniel J Walsh
2005-01-28 17:19:20 +0000
cc65d5b546- Update from NSA Merged minor fix for avcstat from Dan Walsh.
Daniel J Walsh
2005-01-26 16:36:33 +0000
e0a30a3da4- rpmexeccon should not fail in permissive mode.
Daniel J Walsh
2005-01-24 20:46:24 +0000
ca41c6e4bb- fix printf in avcstat
Daniel J Walsh
2005-01-21 20:57:55 +0000
e1e9d62ce4- Update from NSA
Daniel J Walsh
2005-01-20 13:58:18 +0000
958b6d4982- Modify matchpathcon to also process file_contexts.local if it exists
Daniel J Walsh
2005-01-18 22:27:57 +0000
ae6f77c9ad- Add is_customizable_types function call
Daniel J Walsh
2005-01-12 14:37:21 +0000
dffd9eaafd- Update to latest from upstream Just changing version number to match upstream
Daniel J Walsh
2005-01-07 14:48:24 +0000
c88fca683f- Update to latest from upstream Changed matchpathcon to return -1 with errno ENOENT for <<none>> entries, and also for an empty file_contexts configuration.
Daniel J Walsh
2004-12-29 17:08:58 +0000
7aa4e97275- Fix link devel libraries
Daniel J Walsh
2004-12-28 15:40:26 +0000
4f73d76fa3- Fix unitialized variable in avcstat.c
Daniel J Walsh
2004-12-27 11:53:31 +0000
e836ab9afbfix spec file
Daniel J Walsh
2004-12-20 14:25:06 +0000
8ecfe2db4e- Upgrade to upstream Removed some trivial utils that were not useful or redundant. Changed BINDIR default to /usr/sbin to match change in Fedora. Added security_compute_member. Added man page for setcon.
Daniel J Walsh
2004-12-03 19:41:58 +0000
cc63ca70ad- Upgrade to upstream
Daniel J Walsh
2004-12-01 01:31:34 +0000
5d71053bd0- Add avcstat program
Daniel J Walsh
2004-11-18 21:30:11 +0000
6864134300- Add avcstat program
Daniel J Walsh
2004-11-18 21:29:18 +0000
2a0f8bbed9- Add lots of missing man pages
Daniel J Walsh
2004-11-15 20:13:52 +0000
4962db3e56- Add lots of missing man pages
Daniel J Walsh
2004-11-15 20:05:55 +0000
437c89fe9f- Fix output of getsebool.
Daniel J Walsh
2004-11-12 13:03:50 +0000
38be80f2c3- Update from upstream, fix setsebool -P segfault
Daniel J Walsh
2004-11-09 14:24:39 +0000
37dbcb478dadded patch from upstream
Steve Grubb
2004-11-05 22:26:36 +0000
407b1fe335- More fixes from sgrubb, better syslog
Daniel J Walsh
2004-11-04 18:25:37 +0000
aed8abc66cspec file correction.
Steve Grubb
2004-11-04 17:30:03 +0000
efa62ac4a5- Have sesebool log to syslog
Daniel J Walsh
2004-11-04 15:50:24 +0000
35c4f2492cfix spec file
Daniel J Walsh
2004-11-03 20:55:44 +0000
71b3b1c0e0Add patch to make setsebool update bool on disk. Make togglesebool have a rollback capability in case it blows up inflight.
Steve Grubb
2004-11-03 20:50:26 +0000
cfb1f307ae- Upgrade to latest from NSA
Daniel J Walsh
2004-11-02 19:47:54 +0000
1d320842ceUpdated 2 previous patches to output Usage before checking if selinux is enabled. Apply a patch that fixes signed/unsigned issues and a memory leak.
Steve Grubb
2004-11-01 18:56:08 +0000
76a08583daMove utilities to /usr/sbin
Steve Grubb
2004-10-28 21:25:27 +0000
4af2226534Adding patches for specfile
Steve Grubb
2004-10-27 20:53:11 +0000
b2c3e1fca2add -g to build and update with rpmexec
Daniel J Walsh
2004-10-15 13:42:33 +0000
224faef153update to NSA version
Daniel J Walsh
2004-10-06 14:03:28 +0000
828726ceedchange setenforce to accept Enforcing. permissive
Daniel J Walsh
2004-10-01 18:56:25 +0000
72ef06e71fadd alpha patch
Daniel J Walsh
2004-09-22 12:06:18 +0000
228dd64e4flatest from NSA
Daniel J Walsh
2004-09-20 19:50:16 +0000
dfa5fafe1badd removable_context path
Daniel J Walsh
2004-09-16 14:47:36 +0000
0474ff5fefNSA Cleanup
Daniel J Walsh
2004-09-15 14:14:10 +0000
39b34ebda7latest from NSA
Daniel J Walsh
2004-09-14 13:43:57 +0000
791a651339add nscd perms
Daniel J Walsh
2004-09-14 13:39:22 +0000
dcf4ba68c9latest from NSA
Daniel J Walsh
2004-09-10 18:40:42 +0000
9a368c5f7badd matchmediacon
Daniel J Walsh
2004-09-10 17:27:19 +0000
aca62f6df6auto-import changelog data from libselinux-1.17.9-1.src.rpm Wed Sep 08 2004 Dan Walsh <dwalsh@redhat.com> 1.17.9-1 - Update from NSA Added get_default_context_with_role.
cvsdist
2004-09-09 07:46:10 +0000
1591c8d77aauto-import libselinux-1.17.8-2 from libselinux-1.17.8-2.src.rpm
cvsdist
2004-09-09 07:45:58 +0000
f453bd1f3dauto-import changelog data from libselinux-1.17.8-1.src.rpm Thu Sep 02 2004 Dan Walsh <dwalsh@redhat.com> 1.17.8-1 - Update from NSA Added set_matchpathcon_printf. Wed Sep 01 2004 Dan Walsh <dwalsh@redhat.com> 1.17.7-1 - Update from NSA Reworked av_inherit.h to allow easier re-use by kernel.
cvsdist
2004-09-09 07:45:53 +0000
b320ff19bbauto-import libselinux-1.17.7-1 from libselinux-1.17.7-1.src.rpm
cvsdist
2004-09-09 07:45:43 +0000
e34dcc2219auto-import changelog data from libselinux-1.17.6-1.src.rpm Tue Aug 31 2004 Dan Walsh <dwalsh@redhat.com> 1.17.6-1 - Add strcasecmp in selinux_config - Update from NSA Changed avc_has_perm_noaudit to not fail on netlink errors. Changed avc netlink code to check pid based on patch by Steve Grubb. Merged second optimization patch from Ulrich Drepper. Changed matchpathcon to skip invalid file_contexts entries. Made string tables private to libselinux. Merged strcat->stpcpy patch from Ulrich Drepper. Merged matchpathcon man page from Dan Walsh. Merged patch to eliminate PLTs for local syms from Ulrich Drepper. Autobind netlink socket. Dropped compatibility code from security_compute_user. Merged fix for context_range_set from Chad Hanson. Merged allocation failure checking patch from Chad Hanson. Merged avc netlink error message patch from Colin Walters.
cvsdist
2004-09-09 07:45:35 +0000
4b578fd4a9auto-import libselinux-1.17.5-1 from libselinux-1.17.5-1.src.rpm
cvsdist
2004-09-09 07:45:27 +0000
052a62dd21auto-import changelog data from libselinux-1.17.4-1.src.rpm Mon Aug 30 2004 Dan Walsh <dwalsh@redhat.com> 1.17.4-1 - Update from NSA - Add optflags
cvsdist
2004-09-09 07:45:21 +0000
f991fab43aauto-import libselinux-1.17.3-1 from libselinux-1.17.3-1.src.rpm
cvsdist
2004-09-09 07:45:16 +0000
6df57245c3auto-import changelog data from libselinux-1.17.2-1.src.rpm Thu Aug 26 2004 Dan Walsh <dwalsh@redhat.com> 1.17.2-1 - Add matchpathcon man page - Latest from NSA Merged patch to eliminate PLTs for local syms from Ulrich Drepper. Autobind netlink socket. Dropped compatibility code from security_compute_user. Merged fix for context_range_set from Chad Hanson. Merged allocation failure checking patch from Chad Hanson. Merged avc netlink error message patch from Colin Walters.
cvsdist
2004-09-09 07:45:13 +0000
569258dd79auto-import changelog data from libselinux-1.17.1-1.src.rpm Tue Aug 24 2004 Dan Walsh <dwalsh@redhat.com> 1.17.1-1 - Latest from NSA Autobind netlink socket. Dropped compatibility code from security_compute_user. Merged fix for context_range_set from Chad Hanson. Merged allocation failure checking patch from Chad Hanson. Merged avc netlink error message patch from Colin Walters.
cvsdist
2004-09-09 07:45:06 +0000
c722471fdeauto-import changelog data from libselinux-1.16.1-1.src.rpm Sun Aug 22 2004 Dan Walsh <dwalsh@redhat.com> 1.16.1-1 - Latest from NSA
cvsdist
2004-09-09 07:44:55 +0000
1e259b6254auto-import changelog data from libselinux-1.16-1.src.rpm Thu Aug 19 2004 Colin Walters <walters@redhat.com> 1.16-1 - New upstream version
cvsdist
2004-09-09 07:44:50 +0000
998a860c58auto-import changelog data from libselinux-1.15.7-1.src.rpm Tue Aug 17 2004 Dan Walsh <dwalsh@redhat.com> 1.15.7-1 - Latest from Upstream
cvsdist
2004-09-09 07:44:47 +0000
Daniel J Walsh
Steve Grubb
cvsdist