Commit Graph

82 Commits

Author SHA1 Message Date
Daniel J Walsh
03496a1f36 * Tue Nov 8 2005 Dan Walsh <dwalsh@redhat.com> 1.27.26-1
* Added -B (--build) option to semodule to force a rebuild.
	* Reverted setsebool patch to call semanage_set_reload_bools().
	* Changed setsebool to disable policy reload and to call
	  security_set_boolean_list to update the runtime booleans.
	* Changed setfiles -c to use new flag to set_matchpathcon_flags()
	  to disable context translation by matchpathcon_init().
2005-11-09 01:55:26 +00:00
Daniel J Walsh
cae7e9aca8 * Tue Nov 8 2005 Dan Walsh <dwalsh@redhat.com> 1.27.23-1
- Update to match NSA
	* Changed setfiles for the context canonicalization support.
	* Changed setsebool to call semanage_is_managed() interface
	  and fall back to security_set_boolean_list() if policy is
	  not managed.
	* Merged setsebool memory leak fix from Ivan Gyurdiev.
	* Merged setsebool patch to call semanage_set_reload_bools()
	  interface from Ivan Gyurdiev.
2005-11-08 23:54:22 +00:00
Daniel J Walsh
3b83aa4b95 * Mon Nov 7 2005 Dan Walsh <dwalsh@redhat.com> 1.27.20-1
- Update to match NSA
	* Merged setsebool patch from Ivan Gyurdiev.
	  This moves setsebool from libselinux/utils to policycoreutils,
	  and rewrites it to use libsemanage for permanent boolean changes.
2005-11-07 19:07:53 +00:00
Daniel J Walsh
af9f444b4a * Tue Oct 25 2005 Dan Walsh <dwalsh@redhat.com> 1.27.19-1
- Update to match NSA
	* Merged semodule support for reload, noreload, and store options
	  from Joshua Brindle.
	* Merged semodule_package rewrite from Joshua Brindle.
2005-10-25 19:28:31 +00:00
Daniel J Walsh
e2539cf5af * Thu Oct 20 2005 Dan Walsh <dwalsh@redhat.com> 1.27.18-1
- Update to match NSA
	* Cleaned up usage and error messages and releasing of memory by
   	  semodule_* utilities.
	* Corrected error reporting by semodule.
	* Updated semodule_expand for change to sepol interface.
	* Merged fixes for make DESTDIR= builds from Joshua Brindle.
2005-10-21 14:35:30 +00:00
Daniel J Walsh
10bbcc68d7 * Tue Oct 18 2005 Dan Walsh <dwalsh@redhat.com> 1.27.14-1
- Update to match NSA
	* Updated semodule_package for sepol interface changes.
2005-10-18 18:40:47 +00:00
Daniel J Walsh
0f61d9e932 * Tue Oct 18 2005 Dan Walsh <dwalsh@redhat.com> 1.27.13-1
- Update to match NSA
	* Updated semodule_expand/link for sepol interface changes.
2005-10-18 14:16:52 +00:00
Daniel J Walsh
95a98894e0 * Sat Oct 15 2005 Dan Walsh <dwalsh@redhat.com> 1.27.12-1
- Update to match NSA
	* Merged non-PAM Makefile support for newrole and run_init from Timothy Wood.
2005-10-15 12:29:01 +00:00
Daniel J Walsh
e4ea758e93 * Fri Oct 14 2005 Dan Walsh <dwalsh@redhat.com> 1.27.11-1
- Update to match NSA
	* Updated semodule_expand to use get interfaces for hidden sepol_module_package type.
	* Merged newrole and run_init pam config patches from Dan Walsh (Red Hat).
	* Merged fixfiles patch from Dan Walsh (Red Hat).
	* Updated semodule for removal of semanage_strerror.
2005-10-14 12:41:22 +00:00
Daniel J Walsh
f30e7552f6 * Wed Oct 12 2005 Dan Walsh <dwalsh@redhat.com> 1.27.7-1
- Update to match NSA
	* Updated semodule_link and semodule_expand to use shared libsepol.
	Fixed audit2why to call policydb_init prior to policydb_read (still
	uses the static libsepol).
2005-10-12 19:34:51 +00:00
Daniel J Walsh
6c28dbbe27 * Mon Oct 10 2005 Dan Walsh <dwalsh@redhat.com> 1.27.6-1
- Update to match NSA
	* Updated for changes to libsepol.
	Changed semodule and semodule_package to use the shared libsepol.
	Disabled build of semodule_link and semodule_expand for now.
	Updated audit2why for relocated policydb internal headers,
	still needs to be converted to a shared lib interface.
2005-10-10 13:06:58 +00:00
Daniel J Walsh
ab21aae5ca * Thu Oct 6 2005 Dan Walsh <dwalsh@redhat.com> 1.27.5-1
- Update to match NSA
	* Fixed warnings in load_policy.
	* Rewrote load_policy to use the new selinux_mkload_policy()
	interface provided by libselinux.
2005-10-06 19:11:25 +00:00
Daniel J Walsh
4a318b2c39 * Wed Sep 28 2005 Dan Walsh <dwalsh@redhat.com> 1.27.2-2
- Update to match NSA
	* Merged patch to update semodule to the new libsemanage API
	and improve the user interface from Karl MacMillan (Tresys).
	* Modified semodule for the create/connect API split.
2005-09-29 01:11:47 +00:00
Daniel J Walsh
a23b56f059 * Wed Sep 21 2005 Dan Walsh <dwalsh@redhat.com> 1.27.2-1
- Update to match NSA
	* Merged run_init open_init_pty bug fix from Manoj Srivastava
	  (unblock SIGCHLD).  Bug reported by Erich Schubert.
2005-09-21 18:10:15 +00:00
Daniel J Walsh
a4eddc5bd9 * Tue Sep 20 2005 Dan Walsh <dwalsh@redhat.com> 1.27.1-1
- Update to match NSA
	* Merged error shadowing bug fix for restorecon from Dan Walsh.
	* Merged setfiles usage/man page update for -r option from Dan Walsh.
	* Merged fixfiles -C patch to ignore :s0 addition on update
	  to a MCS/MLS policy from Dan Walsh.
2005-09-21 01:28:05 +00:00
Daniel J Walsh
a128573f61 * Mon Sep 12 2005 Dan Walsh <dwalsh@redhat.com> 1.26-1
* Updated version for release.
2005-09-12 20:37:18 +00:00
Daniel J Walsh
7800ad0dc0 * Thu Sep 1 2005 Dan Walsh <dwalsh@redhat.com> 1.25.9-1
- Update to match NSA
	* Changed setfiles -c to translate the context to raw format
	prior to calling libsepol.
2005-09-01 16:17:38 +00:00
Daniel J Walsh
744ff8dd67 * Thu Aug 25 2005 Dan Walsh <dwalsh@redhat.com> 1.25.7-1
- Update to match NSA
	* Merged patch for fixfiles -C from Dan Walsh.
2005-08-25 20:44:24 +00:00
Daniel J Walsh
4172c15ac9 * Tue Aug 23 2005 Dan Walsh <dwalsh@redhat.com> 1.25.6-1
- Update to match NSA
	* Merged fixes for semodule_link and sestatus from Serge Hallyn (IBM).
	  Bugs found by Coverity.
2005-08-23 18:49:21 +00:00
Daniel J Walsh
496e664f46 * Fri Aug 52005 Dan Walsh <dwalsh@redhat.com> 1.25.5-1
- Update to match NSA
	* Merged patch to move module read/write code from libsemanage
	  to libsepol from Jason Tang (Tresys).
2005-08-06 01:38:19 +00:00
Daniel J Walsh
146de04654 * Thu Jul 28 2005 Dan Walsh <dwalsh@redhat.com> 1.25.4-1
- Update to match NSA
	* Changed semodule* to link with libsemanage.
2005-08-02 16:57:45 +00:00
Daniel J Walsh
3ff1aebc51 * Thu Jul 27 2005 Dan Walsh <dwalsh@redhat.com> 1.25.3-1
- Update to match NSA
	* Merged restorecon patch from Ivan Gyurdiev.
2005-07-27 14:05:30 +00:00
Daniel J Walsh
8db28853c1 * Thu Jul 7 2005 Dan Walsh <dwalsh@redhat.com> 1.25.1-1
- Update to match NSA
	* Merged loadable module support from Tresys Technology.
2005-07-07 10:59:34 +00:00
Daniel J Walsh
2691608b82 * Wed Jun 29 2005 Dan Walsh <dwalsh@redhat.com> 1.24-1
- Update to match NSA
	* Updated version for release.
2005-06-29 20:10:11 +00:00
Daniel J Walsh
77b3c784ce * Fri May 20 2005 Dan Walsh <dwalsh@redhat.com> 1.23.11-1
- Update to match NSA
	* Merged fixfiles and newrole patch from Dan Walsh.
	* Merged audit2why man page from Dan Walsh.
2005-05-20 17:22:30 +00:00
Daniel J Walsh
abd6b8aa00 * Tue May 17 2005 Dan Walsh <dwalsh@redhat.com> 1.23.10-1
- Update to match NSA
	* Extended audit2why to incorporate booleans and local user
	  settings when analyzing audit messages.
2005-05-17 12:38:08 +00:00
Daniel J Walsh
49e5ce8ced * Mon May 16 2005 Dan Walsh <dwalsh@redhat.com> 1.23.9-1
- Update to match NSA
	* Updated audit2why for sepol_ prefixes on Flask types to
	  avoid namespace collision with libselinux, and to
	  include <selinux/selinux.h> now.
2005-05-16 20:32:42 +00:00
Daniel J Walsh
316313f3e5 * Fri Apr 29 2005 Dan Walsh <dwalsh@redhat.com> 1.23.7-1
- Change -f flag in fixfiles to remove stuff from /tmp
- Change -F flag to pass -F flag  to restorecon/fixfiles.  (IE Force relabel).
2005-05-13 18:50:07 +00:00
Daniel J Walsh
9bc29a0558 * Fri Apr 29 2005 Dan Walsh <dwalsh@redhat.com> 1.23.7-1
- Change -f flag in fixfiles to remove stuff from /tmp
- Change -F flag to pass -F flag  to restorecon/fixfiles.  (IE Force relabel).
2005-04-29 18:13:25 +00:00
Daniel J Walsh
7f5e289547 * Thu Apr 14 2005 Dan Walsh <dwalsh@redhat.com> 1.23.6-1
- Update to match NSA
	* Fixed signed/unsigned pointer bug in load_policy.
	* Reverted context validation patch for genhomedircon.
2005-04-14 20:32:36 +00:00
Daniel J Walsh
d34c8f7d88 * Wed Apr 13 2005 Dan Walsh <dwalsh@redhat.com> 1.23.5-1
- Update to match NSA
2005-04-13 15:43:57 +00:00
Daniel J Walsh
f9d71f4c01 * Mon Apr 11 2005 Dan Walsh <dwalsh@redhat.com> 1.23.4-2
- Add -f qualifier for anaconda.  Basically forces load even if selinux not enabled
2005-04-11 20:47:37 +00:00
Daniel J Walsh
feb45d8c20 * Mon Apr 11 2005 Dan Walsh <dwalsh@redhat.com> 1.23.4-1
- Update to version from NSA
	* Merged load_policy is_selinux_enabled patch from Dan Walsh.
	* Merged restorecon verbose output patch from Dan Walsh.
	* Merged setfiles altroot patch from Chris PeBenito.
2005-04-11 20:08:36 +00:00
Daniel J Walsh
2919c0f4b8 * Wed Apr 6 2005 Dan Walsh <dwalsh@redhat.com> 1.23.3-1
- Update to version from NSA
        * Merged context validation patch for genhomedircon from Eric Paris.
- Fix verbose output of restorecon
2005-04-06 13:53:13 +00:00
Daniel J Walsh
bd862ff816 * Thu Mar 17 2005 Dan Walsh <dwalsh@redhat.com> 1.23.2-1
- Update to version from NSA
	* Changed setfiles -c to call set_matchpathcon_flags(3) to
	  turn off processing of .homedirs and .local.
2005-03-17 17:44:20 +00:00
Daniel J Walsh
9874bbbdb4 * Tue Mar 15 2005 Dan Walsh <dwalsh@redhat.com> 1.23.1-1
- Update to released version from NSA
	* Merged rewrite of genhomedircon by Eric Paris.
	* Changed fixfiles to relabel jfs since it now supports security xattrs
	  (as of 2.6.11).  Removed reiserfs until 2.6.12 is released with
	  fixed support for reiserfs and selinux.
2005-03-15 13:49:41 +00:00
Daniel J Walsh
69a80f1250 * Thu Mar 10 2005 Dan Walsh <dwalsh@redhat.com> 1.22-1
- Update to released version from NSA
- Patch genhomedircon to handle passwd in different places.
2005-03-10 14:41:31 +00:00
Daniel J Walsh
60658cab33 * Tue Mar 8 2005 Dan Walsh <dwalsh@redhat.com> 1.21.22-1
- Cleanup error reporting
2005-03-08 19:21:48 +00:00
Daniel J Walsh
c46a192994 * Tue Mar 1 2005 Dan Walsh <dwalsh@redhat.com> 1.21.21-1
* Merged load_policy and genhomedircon patch from Dan Walsh.
2005-03-02 04:06:33 +00:00
Daniel J Walsh
12b6a62a7a * Fri Feb 24 2005 Dan Walsh <dwalsh@redhat.com> 1.21.20-1
- Update to latest from NSA
- Add call to libsepol
2005-02-25 18:52:27 +00:00
Daniel J Walsh
ba42e191b5 * Tue Feb 22 2005 Dan Walsh <dwalsh@redhat.com> 1.21.19-1
- Update to latest from NSA
        * Merged several fixes from Ulrich Drepper.
2005-02-22 21:42:14 +00:00
Daniel J Walsh
9cde60440f * Sat Feb 19 2005 Dan Walsh <dwalsh@redhat.com> 1.21.18-1
- Update to latest from NSA
	* Changed load_policy to fall back to the original policy upon
	  an error from sepol_genusers().
2005-02-19 13:19:21 +00:00
Daniel J Walsh
f3e86ad067 * Thu Feb 17 2005 Dan Walsh <dwalsh@redhat.com> 1.21.17-1
- Update to latest from NSA
	* Merged new genhomedircon script from Dan Walsh.
	* Changed load_policy to call sepol_genusers().
2005-02-17 23:12:06 +00:00
Daniel J Walsh
cd9a16b315 * Thu Feb 10 2005 Dan Walsh <dwalsh@redhat.com> 1.21.15-1
- Update from NSA
	* Changed relabel Makefile target to use restorecon.
2005-02-10 13:45:56 +00:00
Daniel J Walsh
103aa47c05 * Wed Feb 9 2005 Dan Walsh <dwalsh@redhat.com> 1.21.14-1
- Update from NSA
	* Merged restorecon patch from Dan Walsh.
2005-02-09 15:07:08 +00:00
Daniel J Walsh
41f522a921 * Tue Feb 8 2005 Dan Walsh <dwalsh@redhat.com> 1.21.13-1
- Update from NSA
	* Merged further change to fixfiles -C from Dan Walsh.
	* Merged updated fixfiles script from Dan Walsh.
- Fix error handling of restorecon
2005-02-08 18:33:19 +00:00
Daniel J Walsh
af48e39952 * Wed Feb 2 2005 Dan Walsh <dwalsh@redhat.com> 1.21.12-1
- More cleanup of fixfiles sed patch
	* Merged further patches for restorecon/setfiles -e and fixfiles -C.
2005-02-02 22:25:03 +00:00
Daniel J Walsh
829c705f9c * Fri Jan 28 2005 Dan Walsh <dwalsh@redhat.com> 1.21.10-1
- More cleanup of fixfiles sed patch
- Upgrade to latest from NSA
	* Merged patch for open_init_pty from Manoj Srivastava.
2005-02-02 13:56:22 +00:00
Daniel J Walsh
5823eec412 * Fri Jan 28 2005 Dan Walsh <dwalsh@redhat.com> 1.21.9-1
- More cleanup of sed patch
- Upgrade to latest from NSA
	* Merged updated fixfiles script from Dan Walsh.
	* Merged updated man page for fixfiles from Dan Walsh and re-added unzipped.
	* Reverted fixfiles patch for file_contexts.local;
	  obsoleted by setfiles rewrite.
	* Merged error handling patch for restorecon from Dan Walsh.
	* Merged semi raw mode for open_init_pty helper from Manoj Srivastava.
	* Rewrote setfiles to use matchpathcon and the new interfaces
	  exported by libselinux (>= 1.21.5).
2005-01-31 19:04:21 +00:00
Daniel J Walsh
a74df22263 * Fri Jan 28 2005 Dan Walsh <dwalsh@redhat.com> 1.21.7-1
- Upgrade to latest from NSA
	* Prevent overflow of spec array in setfiles.
- Add diff comparason between file_contexts to fixfiles
- Allow restorecon to give an warning on file not found instead of exiting
2005-01-28 16:50:29 +00:00