SOURCES/0001-restorecon.py-exclude-more-paths.patch

@@ -0,0 +1,26 @@
+From 0f508191647a41f92264c0c8fc877b0110bbd468 Mon Sep 17 00:00:00 2001
+From: Petr Lautrbach <plautrba@redhat.com>
+Date: Tue, 10 Aug 2021 20:11:20 +0200
+Subject: [PATCH] restorecon.py: exclude more paths
+
+It doesn't make sense to run restorecon on /sys/ /proc/ and /memfd:
+---
+ src/restorecon.py | 2 +-
+ 1 file changed, 1 insertion(+), 1 deletion(-)
+
+diff --git a/src/restorecon.py b/src/restorecon.py
+index e3044c742367..9594c0d59d96 100644
+--- a/src/restorecon.py
++++ b/src/restorecon.py
+@@ -39,7 +39,7 @@ def customizable(target):
+ 
+ 
+ # List of path prefixes for which this plugin is not executed
+-excluded_paths = ["/sys/fs"]
++excluded_paths = ["/sys/", "/proc/", "/memfd:"]
+ # Test if the specified path starts with some excluded prefix
+ def excluded_path(target_path):
+     for path in excluded_paths:
+-- 
+2.32.0
+

SPECS/setroubleshoot-plugins.spec

@@ -1,19 +1,24 @@
 %{!?_pkgdocdir: %global _pkgdocdir %{_docdir}/%{name}-%{version}}
 
+# Disable automatic compilation of Python files in extra directories
+%global _python_bytecompile_extra 0
+
 Summary: Analysis plugins for use with setroubleshoot
 Name: setroubleshoot-plugins
 Version: 3.3.14
-Release: 1%{?dist}
+Release: 4%{?dist}
 License: GPLv2+
-Group: Applications/System
-URL: https://gitlab.com/setroubleshoot/plugins
+URL: https://github.com/fedora-selinux/setroubleshoot
 Source0: https://releases.pagure.org/setroubleshoot/%{name}-%{version}.tar.gz
-# https://pagure.io/setroubleshoot
-# git format-patch -N setroubleshoot-plugins-<version>
+# git format-patch -N setroubleshoot-plugins-<version> -- plugins
 # i=1; for j in 00*patch; do printf "Patch%04d: %s\n" $i $j; i=$((i+1));done
-Patch0001: 0001-Update-translations.patch
+Patch0001: 0001-restorecon.py-exclude-more-paths.patch
 BuildArch: noarch
 
+# gcc is needed only for ./configure
+# Remove it when the build process is fixed
+BuildRequires: gcc
+BuildRequires: make
 BuildRequires: perl-XML-Parser
 BuildRequires: intltool gettext python3-devel
 # Introduction of get_package_nvr functions
@@ -34,50 +39,77 @@ make PYTHON=%{__python3}
 
 %install 
 rm -rf %{buildroot}
-make DESTDIR=%{buildroot} PYTHON=%{__python3} pkgdocdir=%{_pkgdocdir} install
+%make_install PYTHON=%{__python3} pkgdocdir=%{_pkgdocdir}
 %find_lang %{name}
+# Manually invoke the python byte compile macro for each path that needs byte
+# compilation.
+%py_byte_compile %{__python3} %{buildroot}%{_datadir}/setroubleshoot/plugins
 
-%clean
-rm -rf %{buildroot}
-
-%files -f %{name}.lang
-%defattr(-,root,root,-)
+%files -f %{name}.lang 
 %doc %{_pkgdocdir}
 %{_datadir}/setroubleshoot/plugins
 
 %changelog
-* Mon Sep 27 2021 Vit Mojzis <vmojzis@redhat.com> - 3.3.14-1
-- Update translations (#1962034)
+* Fri Sep  3 2021 Petr Lautrbach <plautrba@redhat.com> - 3.3.14-4
+- restorecon.py: exclude more paths (#1960136)
 
-* Wed Aug 12 2020 Vit Mojzis <vmojzis@redhat.com> - 3.3.13-1
-- Add 'fur' into shipped locales
-- Update translations (#1820571)
+* Tue Aug 10 2021 Mohan Boddu <mboddu@redhat.com> - 3.3.14-3
+- Rebuilt for IMA sigs, glibc 2.34, aarch64 flags
+  Related: rhbz#1991688
 
-* Tue Apr 28 2020 Vit Mojzis <vmojzis@redhat.com> - 3.3.12-1
+* Fri Apr 16 2021 Mohan Boddu <mboddu@redhat.com> - 3.3.14-2
+- Rebuilt for RHEL 9 BETA on Apr 15th 2021. Related: rhbz#1947937
+
+* Mon Mar 29 2021 Vit Mojzis <vmojzis@redhat.com> - 3.3.14-1
+- Update translations
+
+* Wed Jan 27 2021 Fedora Release Engineering <releng@fedoraproject.org> - 3.3.12-4
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
+
+* Wed Jul 29 2020 Fedora Release Engineering <releng@fedoraproject.org> - 3.3.12-3
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
+
+* Tue Jul 14 2020 Tom Stellard <tstellar@redhat.com> - 3.3.12-2
+- Use make macros
+- https://fedoraproject.org/wiki/Changes/UseMakeBuildInstallMacro
+
+* Tue Apr 21 2020 Vit Mojzis <vmojzis@redhat.com> - 3.3.12-1
 - Use get_package_nvr* functions instead of get_rpm_nvr*
-- Update deprecated type references (#1829306)
+- Update deprecated type references
+- Update translations
 
-* Fri Jan 17 2020 Vit Mojzis <vmojzis@redhat.com> - 3.3.11-2
-- Update translations (#1754992)
-
-* Mon Nov 18 2019 Vit Mojzis <vmojzis@redhat.com> - 3.3.11-1
-- Add plugin which analyzes execmem denials (#1649842)
+* Thu Jan 30 2020 Vit Mojzis <vmojzis@redhat.com> - 3.3.11-1
+- Add plugin which analyzes execmem denials
 - Add missing "If " strings
+- Update qemu_blk_image and qemu_file_image
+- Update "xen_image" plugin
+- Update "file" plugin
+- Update "missing" scripts to automake-1.15
 
-* Mon Aug 19 2019 Vit Mojzis <vmojzis@redhat.com> - 3.3.10-3
-- Rebuild with gating enabled (#1682462)
+* Thu Jan 30 2020 Fedora Release Engineering <releng@fedoraproject.org> - 3.3.10-4
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild
 
-* Fri Aug 16 2019 Vit Mojzis <vmojzis@redhat.com> - 3.3.10-2
-- update "file" plugin (#1649818)
-- Update "xen_image" plugin (#1649831)
-- Update qemu_blk_image and qemu_file_image (#1649838)
+* Fri Jul 26 2019 Fedora Release Engineering <releng@fedoraproject.org> - 3.3.10-3
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild
 
-* Fri Dec  7 2018 Petr Lautrbach <plautrba@redhat.com> - 3.3.10-1
+* Sat Feb 02 2019 Fedora Release Engineering <releng@fedoraproject.org> - 3.3.10-2
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild
+
+* Sat Dec  8 2018 Petr Lautrbach <plautrba@redhat.com> - 3.3.10-1
 - Handle no "allowed_target_types" properly
 - bind_ports: Do not use when there are no allowed_target_types
 - Fix summary and "if" text for AVCs with unknown target path
 - plugins: Update translations
 
+* Sat Jul 14 2018 Fedora Release Engineering <releng@fedoraproject.org> - 3.3.9-6
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
+
+* Tue Jun 19 2018 Miro Hrončok <mhroncok@redhat.com> - 3.3.9-5
+- Rebuilt for Python 3.7
+
+* Fri Feb 09 2018 Fedora Release Engineering <releng@fedoraproject.org> - 3.3.9-4
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild
+
 * Thu Nov 23 2017 Petr Lautrbach <plautrba@redhat.com> - 3.3.9-3
 - Update translations