2023-09-15 12:46:18 +00:00
|
|
|
# General maintainer notes:
|
|
|
|
|
# Fedora guideliens for packaging of SELinux rules:
|
|
|
|
|
# https://fedoraproject.org/wiki/SELinux/IndependentPolicy
|
|
|
|
|
# RHEL instructions regarding Troubleshooting problems related to SELinux:
|
|
|
|
|
# https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/using_selinux/troubleshooting-problems-related-to-selinux_using-selinux
|
|
|
|
|
|
2018-08-20 14:00:36 +00:00
|
|
|
# defining macros needed by SELinux
|
|
|
|
|
%global selinuxtype targeted
|
|
|
|
|
%global modulename mysql
|
|
|
|
|
|
2020-12-01 19:24:57 +00:00
|
|
|
Name: mysql-selinux
|
2023-11-18 12:17:49 +00:00
|
|
|
Version: 1.0.10
|
2024-06-24 16:04:15 +00:00
|
|
|
Release: 4%{?dist}
|
2020-12-01 19:24:57 +00:00
|
|
|
|
2023-03-30 20:59:46 +00:00
|
|
|
License: GPL-3.0-only
|
2020-12-01 19:24:57 +00:00
|
|
|
URL: https://github.com/devexp-db/mysql-selinux
|
|
|
|
|
Summary: SELinux policy modules for MySQL and MariaDB packages
|
|
|
|
|
|
2021-09-13 11:15:19 +00:00
|
|
|
Source0: https://github.com/devexp-db/mysql-selinux/archive/refs/tags/%{version}.tar.gz#/%{name}-%{version}.tar.gz
|
2020-12-01 19:24:57 +00:00
|
|
|
|
|
|
|
|
BuildArch: noarch
|
2023-09-15 12:46:53 +00:00
|
|
|
|
2021-09-13 11:23:20 +00:00
|
|
|
BuildRequires: make
|
2020-12-01 19:24:57 +00:00
|
|
|
BuildRequires: selinux-policy-devel
|
2023-09-15 12:46:53 +00:00
|
|
|
|
2018-08-20 14:00:36 +00:00
|
|
|
%{?selinux_requires}
|
2023-09-15 12:46:53 +00:00
|
|
|
Requires: selinux-policy-%{selinuxtype}
|
|
|
|
|
Requires(post): selinux-policy-%{selinuxtype}
|
2018-08-20 14:00:36 +00:00
|
|
|
|
|
|
|
|
%description
|
2020-12-01 19:24:57 +00:00
|
|
|
SELinux policy modules for MySQL and MariaDB packages.
|
2018-08-20 14:00:36 +00:00
|
|
|
|
2021-09-13 11:23:20 +00:00
|
|
|
|
2018-08-20 14:00:36 +00:00
|
|
|
%prep
|
2020-12-01 19:24:57 +00:00
|
|
|
%setup -q -n %{name}-%{version}
|
2018-08-20 14:00:36 +00:00
|
|
|
|
|
|
|
|
%build
|
|
|
|
|
make
|
|
|
|
|
|
|
|
|
|
%install
|
|
|
|
|
# install policy modules
|
2023-09-25 13:59:23 +00:00
|
|
|
install -d %{buildroot}%{_datadir}/selinux/packages/%{selinuxtype}
|
|
|
|
|
install -m 0644 %{modulename}.pp.bz2 %{buildroot}%{_datadir}/selinux/packages/%{selinuxtype}
|
2018-08-20 14:00:36 +00:00
|
|
|
|
2021-09-13 11:23:20 +00:00
|
|
|
|
|
|
|
|
%pre
|
|
|
|
|
%selinux_relabel_pre -s %{selinuxtype}
|
2018-08-20 14:00:36 +00:00
|
|
|
|
|
|
|
|
%post
|
2023-09-25 13:59:23 +00:00
|
|
|
%selinux_modules_install -s %{selinuxtype} %{_datadir}/selinux/packages/%{selinuxtype}/%{modulename}.pp.bz2
|
2018-08-20 14:00:36 +00:00
|
|
|
|
|
|
|
|
%postun
|
|
|
|
|
if [ $1 -eq 0 ]; then
|
2023-09-15 12:35:36 +00:00
|
|
|
%selinux_modules_uninstall -s %{selinuxtype} %{modulename}
|
2018-08-20 14:00:36 +00:00
|
|
|
fi
|
|
|
|
|
|
|
|
|
|
%posttrans
|
2023-09-15 12:35:36 +00:00
|
|
|
%selinux_relabel_post -s %{selinuxtype}
|
2018-08-20 14:00:36 +00:00
|
|
|
|
2021-09-13 11:23:20 +00:00
|
|
|
|
2018-08-20 14:00:36 +00:00
|
|
|
%files
|
|
|
|
|
%defattr(-,root,root,0755)
|
2023-09-25 13:59:23 +00:00
|
|
|
%attr(0644,root,root) %{_datadir}/selinux/packages/%{selinuxtype}/%{modulename}.pp.bz2
|
2021-04-21 10:36:17 +00:00
|
|
|
%ghost %verify(not mode md5 size mtime) %{_sharedstatedir}/selinux/%{selinuxtype}/active/modules/200/%{modulename}
|
2018-08-20 14:00:36 +00:00
|
|
|
%license COPYING
|
|
|
|
|
|
2023-09-18 11:29:35 +00:00
|
|
|
# Note:
|
|
|
|
|
# we do not pack the *.if file as seen in the example:
|
|
|
|
|
# https://fedoraproject.org/wiki/SELinux/IndependentPolicy#The_%prep_and_%install_Section
|
|
|
|
|
# since we do not have any interface to be shared (and even then it is optional)
|
|
|
|
|
|
2018-08-20 14:00:36 +00:00
|
|
|
%changelog
|
2024-06-24 16:04:15 +00:00
|
|
|
* Mon Jun 24 2024 Troy Dawson <tdawson@redhat.com> - 1.0.10-4
|
|
|
|
|
- Bump release for June 2024 mass rebuild
|
|
|
|
|
|
2024-01-25 08:29:13 +00:00
|
|
|
* Thu Jan 25 2024 Fedora Release Engineering <releng@fedoraproject.org> - 1.0.10-3
|
|
|
|
|
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
|
|
|
|
|
|
2024-01-21 09:01:23 +00:00
|
|
|
* Sun Jan 21 2024 Fedora Release Engineering <releng@fedoraproject.org> - 1.0.10-2
|
|
|
|
|
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
|
|
|
|
|
|
2023-11-18 12:17:49 +00:00
|
|
|
* Sat Nov 18 2023 Packit <hello@packit.dev> - 1.0.10-1
|
|
|
|
|
- 2nd attempt to fix rhbz#2186996 rhbz#2221433 rhbz#2245705 (Michal Schorm)
|
|
|
|
|
- Resolves rhbz#2250424
|
|
|
|
|
|
2023-11-17 22:26:22 +00:00
|
|
|
* Fri Nov 17 2023 Packit <hello@packit.dev> - 1.0.9-1
|
|
|
|
|
- Revert "Attempt to fix rhbz#2186996 rhbz#2221433 rhbz#2245705" This reverts commit de84778e555b891fd9ea5f3111c87a4990650d6c. (Michal Schorm)
|
|
|
|
|
- Resolves rhbz#2250360
|
|
|
|
|
|
2023-09-26 09:37:35 +00:00
|
|
|
* Tue Sep 26 2023 Michal Schorm <mschorm@redhat.com> - 1.0.7-2
|
|
|
|
|
- Bump release for rebuild
|
|
|
|
|
|
2023-09-14 09:12:41 +00:00
|
|
|
* Thu Sep 14 2023 Packit <hello@packit.dev> - 1.0.7-1
|
|
|
|
|
- Empty commit to test Fedora PACKIT configuration for packaging automation (Michal Schorm)
|
|
|
|
|
|
2023-07-20 16:09:50 +00:00
|
|
|
* Thu Jul 20 2023 Fedora Release Engineering <releng@fedoraproject.org> - 1.0.6-2
|
|
|
|
|
- Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
|
|
|
|
|
|
2023-07-12 07:50:00 +00:00
|
|
|
* Wed Jul 12 2023 Adam Dobes <adobes@redhat.com> - 1.0.6-1
|
|
|
|
|
- Rebase to 1.0.6
|
|
|
|
|
|
2023-01-19 21:04:54 +00:00
|
|
|
* Thu Jan 19 2023 Fedora Release Engineering <releng@fedoraproject.org> - 1.0.5-3
|
|
|
|
|
- Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild
|
|
|
|
|
|
2022-07-22 00:04:40 +00:00
|
|
|
* Fri Jul 22 2022 Fedora Release Engineering <releng@fedoraproject.org> - 1.0.5-2
|
|
|
|
|
- Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
|
|
|
|
|
|
2022-06-09 11:15:18 +00:00
|
|
|
* Thu Jun 09 2022 Michal Schorm <mschorm@redhat.com> - 1.0.5-1
|
2022-06-09 10:02:46 +00:00
|
|
|
- Rebase to 1.0.5
|
|
|
|
|
|
2022-01-20 20:44:42 +00:00
|
|
|
* Thu Jan 20 2022 Fedora Release Engineering <releng@fedoraproject.org> - 1.0.4-4
|
|
|
|
|
- Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
|
|
|
|
|
|
2021-07-22 15:41:48 +00:00
|
|
|
* Thu Jul 22 2021 Fedora Release Engineering <releng@fedoraproject.org> - 1.0.4-3
|
|
|
|
|
- Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild
|
|
|
|
|
|
2021-04-21 10:36:17 +00:00
|
|
|
* Wed Apr 21 2021 Lukas Javorsky <ljavorsk@redhat.com> - 1.0.4-2
|
|
|
|
|
- Fix rpm verification it's a ghost file so it should ignore the error
|
|
|
|
|
|
2021-03-19 13:29:40 +00:00
|
|
|
* Fri Mar 19 2021 Lukas Javorsky <ljavorsk@redhat.com> - 1.0.4-1
|
|
|
|
|
- Rebase to 1.0.4
|
|
|
|
|
- Unintentional removal of semicolon
|
|
|
|
|
|
2021-03-19 12:39:30 +00:00
|
|
|
* Fri Mar 19 2021 Lukas Javorsky <ljavorsk@redhat.com> - 1.0.3-1
|
|
|
|
|
- Rebase to 1.0.3
|
|
|
|
|
- Remove setuid/setgid capabilities from mysqld_t type.
|
|
|
|
|
|
2021-01-26 21:06:30 +00:00
|
|
|
* Tue Jan 26 2021 Fedora Release Engineering <releng@fedoraproject.org> - 1.0.2-2
|
|
|
|
|
- Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
|
|
|
|
|
|
2020-12-02 16:43:18 +00:00
|
|
|
* Wed Dec 02 2020 Michal Schorm <mschorm@redhat.com> - 1.0.2-1
|
|
|
|
|
- Rebase to 1.0.2 release
|
|
|
|
|
Added context for "*mariadb*" named executables
|
|
|
|
|
|
2020-12-01 19:24:57 +00:00
|
|
|
* Tue Dec 01 2020 Michal Schorm <mschorm@redhat.com> - 1.0.1-1
|
|
|
|
|
- Rebase to 1.0.1 release
|
|
|
|
|
This release is just a sync-up with upstream selinux-policy
|
|
|
|
|
- URL changed to a new upstream repository
|
|
|
|
|
|
2020-07-28 08:43:58 +00:00
|
|
|
* Tue Jul 28 2020 Fedora Release Engineering <releng@fedoraproject.org> - 1.0.0-10
|
|
|
|
|
- Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
|
|
|
|
|
|
2020-01-29 14:25:49 +00:00
|
|
|
* Wed Jan 29 2020 Fedora Release Engineering <releng@fedoraproject.org> - 1.0.0-9
|
|
|
|
|
- Rebuilt for https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild
|
|
|
|
|
|
2019-02-01 11:49:31 +00:00
|
|
|
* Fri Feb 01 2019 Fedora Release Engineering <releng@fedoraproject.org> - 1.0.0-8
|
|
|
|
|
- Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild
|
|
|
|
|
|
2019-01-11 17:19:40 +00:00
|
|
|
* Fri Jan 11 2019 Kevin Fenzi <kevin@scrye.com> - 1.0.0-7
|
|
|
|
|
- Also make sure posttrans does not fail.
|
|
|
|
|
|
2019-01-10 20:23:05 +00:00
|
|
|
* Thu Jan 10 2019 Kevin Fenzi <kevin@scrye.com> - 1.0.0-6
|
|
|
|
|
- Add Requires(post) on policycoreutils for semodule and make sure post/postun cannot fail
|
|
|
|
|
|
2018-12-06 09:44:21 +00:00
|
|
|
* Thu Dec 06 2018 Jakub Janco <jjanco@redhat.com> - 1.0.0-5
|
|
|
|
|
- Sync with upstream
|
|
|
|
|
|
2018-08-29 15:04:53 +00:00
|
|
|
* Wed Aug 29 2018 Jakub Janco <jjanco@redhat.com> - 1.0.0-4
|
|
|
|
|
- Allow mysqld sys_nice capability
|
|
|
|
|
|
2018-08-20 14:00:36 +00:00
|
|
|
* Mon Aug 20 2018 Jakub Janco <jjanco@redhat.com> - 1.0.0-3
|
|
|
|
|
- reflect latest changes of mysql policy
|
|
|
|
|
|
|
|
|
|
* Fri Jul 27 2018 Jakub Janco <jjanco@redhat.com> - 1.0.0-2
|
|
|
|
|
- reflect latest changes of Independent Product Policy
|
|
|
|
|
|
|
|
|
|
* Wed Jul 18 2018 Jakub Janco <jjanco@redhat.com> - 1.0.0-1
|
|
|
|
|
- First Build
|
|
|
|
|
|
