update to upstream

2007-09-24 20:58:48 +00:00 · 2007-09-24 20:58:48 +00:00 · 2670b62bd6
commit 2670b62bd6
parent dc355e3c84
4 changed files with 75 additions and 3 deletions
--- a/.cvsignore
+++ b/.cvsignore
@ -1 +1 @@
-setroubleshoot-1.10.4.tar.gz
+setroubleshoot-1.10.5.tar.gz
--- a/setroubleshoot.init
+++ b/setroubleshoot.init
@ -71,6 +71,9 @@ start(){
    if test $RETVAL = 0 ; then
        touch /var/lock/subsys/$prog
    fi
+    if test $RETVAL = 3 ; then
+	echo -n $"Cannot start $prog: SELinux not enabled"
+    fi
    return $RETVAL
 }

--- a/setroubleshoot.spec
+++ b/setroubleshoot.spec
@ -1,6 +1,6 @@
 Summary: Helps troubleshoot SELinux problems
 Name: setroubleshoot
-Version: 1.10.4
+Version: 1.10.5
 Release: 1%{?dist}
 License: GPLv2+
 Group: Applications/System
@ -25,6 +25,7 @@ Requires(post):   dbus
 Requires(postun): /usr/bin/update-desktop-database
 Requires(postun): dbus
 Requires: notify-python
+Requires: selinux-policy-base >= 3.0.7-10

 %{!?python_sitelib: %define python_sitelib %(%{__python} -c "from distutils.sysconfig import get_python_lib; print get_python_lib()")}

@ -171,6 +172,74 @@ rm -rf %{buildroot}
 %attr(0755,root,root) /etc/rc.d/init.d/%{name}

 %changelog
+* Mon Sep 24 2007 John Dennis <jdennis@redhat.com> - 1.10.5-1
+	- update code for command line log file scanning to work with
+	  new log file scanning code introduced for the browser.
+
+	- update Bulgarian translation (Doncho N. Gunchev (gunchev@gmail.com))
+
+	- update Polish translation (Piotr Drąg (raven@pmail.pl))
+
+	- Resolves bug #239893: sealert wakes up very often
+	  This was caused by the use of threads and pygtk's thread signal
+	  handling.  The only use of threads in sealert was for log file
+	  scanning so that the UI would remain responsive during a
+	  scan. Threads in sealert have now been completely
+	  removed. Instead the scanning work is performed in a gobject idle
+	  function called from the main loop. The idle function is written
+	  as a python generator function which allows for the function to
+	  perform a small amount of work, save it's execution state and
+	  return. The next time the idle function is called from the main
+	  loop it resumes execution from it's last state until it decides
+	  to yield control again. This way the long running scan/analysis
+	  can be performed in small successive units of work during the
+	  time the application is otherwise idle and it does not interfere
+	  with the rest of the GUI event processing. Everything now occurs
+	  in an event loop, think of it as the applications process/thread
+	  scheduler whose event handlers execute time slices.
+
+	- rewrote parts of the audit input pipeline to use generators
+	  instead of callbacks, thus permitting the logfile scanning code
+	  to yield control with more granularity. Also updated
+	  test_setroubleshootd and audisp_listen to use the new
+	  generator/yield logic.
+
+	- rewrote the dialog used for scanning log files, progress bar
+	  updates are now in the dialog, the scan can be terminated part
+	  way through, errors from the scan are reported in pop-up dialog,
+	  one can only dismiss the dialog with success if the scan had
+	  been successfully run to completion, otherwise the user is only
+	  left with the option to cancel.
+
+	- Relates bug #252035  bug #247469, setroubleshootd and sealert should
+	  exit if SELinux is disabled.
+
+	- add utility functions escape_html() and unescape_html()
+
+	- fix initial sort order in browser, track sort order in browser
+
+	- modify AVC.get_path() to only return a value if the 'path' field is
+	  set, formerly it also considered the fields 'name' & 'file' which were
+	  incorrect. get_path() now also looks to see if the string begins with a
+	  slash for a fully qualified path, if not it looks to see if its a 
+	  pseudo path such as 'pipe[12345]' or 'socket[12345]' and if so strips out
+	  the instance information inside the brackets and returns just the type of 
+	  the pseudo path. This is done because we do not want path information
+	  in the signature to be unique for each instance of the denial.
+
+	- modify the TimeStamp class to hide it's internal datetime member,
+	  remove the cmp() method, the internal __cmp__ will be automatically invoked.
+
+	- require selinux policy version in spec file to allow system dbus use
+	
+	- Resolves bug #256601: audit2allow generates incorrect syntax when comma "," in
+	  denied list
+
+	- update po i18n files
+
+	- Add support for pruning database by age and size
+
+
 * Sat Sep  8 2007 John Dennis <jdennis@redhat.com> - 1.10.4-1
 	- fix init script

--- a/2
+++ b/2
@ -1 +1 @@
-68c3d6d05d5273dd042e792f24ef09f2  setroubleshoot-1.10.4.tar.gz
+067293ed2a6bdfdb2bb8e03185736065  setroubleshoot-1.10.5.tar.gz