Summary: Helps troubleshoot SELinux problems Name: setroubleshoot Version: 0.18 Release: 1 License: GPL Group: Applications/System URL: http://www.redhat.com/ Source0: %{name}-%{version}.tar.gz Source1: setroubleshoot.init Source2: setroubleshoot.logrotate BuildRoot: %{_tmppath}/%{name}-%{version}-%{release}-root-%(%{__id_u} -n) BuildArch: noarch BuildRequires: perl-XML-Parser %{!?python_sitelib: %define python_sitelib %(%{__python} -c "from distutils.sysconfig import get_python_lib; print get_python_lib()")} %define pkgpythondir %{python_sitelib}/%{name} %define pkgdocdir %{_datadir}/doc/%{name}-%{version} %define pkgdatadir %{_datadir}/%{name} %define pkglibexecdir %{_prefix}/libexec/%{name} %define pkgvardatadir %{_localstatedir}/lib/%{name} %define pkgrundir %{_localstatedir}/run/%{name} %define pkgconfigdir %{_sysconfdir}/%{name} %define pkglogdir %{_localstatedir}/log/%{name} %define auditlibdir %{_libdir}/audit Requires: audit-libs-python >= 1.2.5-6 Requires: libselinux >= 1.30.15-1 Requires: pygtk2 >= 2.9.2 Requires: notify-python BuildRequires: intltool gettext python Requires(post): /sbin/chkconfig Requires(preun): /sbin/chkconfig Requires(preun): /sbin/service %description Provides tools to help diagnose SELinux problems. When AVC messages are generated an alert can be generated that will give information about the problem and help track its resolution. Alerts can be configured to user preference. The same tools can be run on existing log files. %prep %setup -q %build %configure make %install rm -rf %{buildroot} make DESTDIR=%{buildroot} install %{__install} -D -m755 %{SOURCE1} %{buildroot}/etc/rc.d/init.d/%{name} %{__install} -D -m644 %{SOURCE2} %{buildroot}%{_sysconfdir}/logrotate.d/%{name} %post /usr/bin/update-desktop-database %{_datadir}/applications /sbin/chkconfig --add %{name} [ -x /sbin/service ] && /sbin/service %{name} condrestart %preun if [ $1 = 0 ]; then /sbin/service %{name} stop >/dev/null 2>&1 /sbin/chkconfig --del %{name} fi %triggerpostun -- setroubleshoot <= 0.9-1 /sbin/chkconfig --del %{name} /sbin/chkconfig --add %{name} %postun /usr/bin/update-desktop-database %{_datadir}/applications %clean rm -rf %{buildroot} %files %defattr(-,root,root,-) %doc %{pkgdocdir} %{_bindir}/* %{_sbindir}/* %{auditlibdir}/* %{pkgpythondir} %{pkgdatadir} %config(noreplace) %{pkgconfigdir}/%{name}.cfg %dir %{pkglogdir} %config(noreplace) %{_sysconfdir}/logrotate.d/%{name} %dir %{pkgrundir} %dir %{pkgvardatadir} /etc/rc.d/init.d/%{name} %{_sysconfdir}/xdg/autostart/* %{_datadir}/applications/*.desktop %{_datadir}/pixmaps/*png %changelog * Mon Aug 7 2006 Dan Walsh - 0.18-1 - Add dispatcher.py * Sat Aug 5 2006 Dan Walsh - 0.17-1 - John Dennis * clean up and rework the timestamp code in util.py so that time zones are handled properly, there were a number of bugs. Hopefully it's correct now because timezone handling is a pain. * change the time format in the browser so all times are displayed identically, the friendly time relative format was hard to compare. * modify the plugin 'make install' to delete all existing plugin's prior to installing the new ones * add popup menu to status icon to choose between browser and alert GUI (not fully connected yet). Several bug fixes related to changing the filter_type from a string to an int. * add filter selection to bottom pane, change filter_type from string to integer constant. Enhance how columns are handled. Get init_combo_box to work. Remove unused RPM and Bugzilla fields from bottom pane. Modify the default size of the browser window. Fix missing import in util.py. * add ability in broswer to sort on columns, initially the report count column and the last seen date column. The date column now stores a TimeStamp object instead of a string. Add new method to TimeStamp to return a friendly string relative to the current time. The date column in the browser now has a cell data function which invokes the friendly format method of the TimeStamp object. * add ability fo serialize to/from xml for classes which can inititialized from strings and serialized as strings (e.g. numbers, TimeStamps, etc.) * add count of how many times a signature is reported, the date when first and last reported, add columns for report count and last date count to browser. * checkpoint browser code, list pane and detail pane now working. * add initial support for browser applet, move some functions which kept getting reused to util.py * add reporting of environment to email alert (email alerts still need work) - Dan Walsh * Fix disable_trans.py set_boolean call * Complete all boolean plugins except disable * Change interface to use audit unix domain socket * Mon Jul 28 2006 Dan Walsh - 0.16-1 - John Dennis * modify SetFilter in server to return errors instead of throwing an exception. Default the filter list on each alert display. * minor tweaks to alert queue handling * fix analyze() parameter list in ftp_is_daemon.py plugin * sealert now responds to pending alerts more correctly, it shows how many pending alerts are in the queue, if you filter the pending alert status is updated, the next alert button will advance you to the next alert in the queue * simplify major pieces of sealert by coalescing common code into subroutines. - Dan Walsh * Complete all boolean plugins except disable * Make Close button work. * Make setroubleshoot_dispatcher exit if it gets an avc about itself * Mon Jul 26 2006 Dan Walsh - 0.15-1 - Karl MacMillan * Add generic templating mechanism to Plugin * Ported all plugins to use templating mechanism * Sat Jul 22 2006 Dan Walsh - 0.13-1 - Fixes to plugins - Fixes to dispatcher * Fri Jul 21 2006 Dan Walsh - 0.12-1 * Fix problem in dispatcher * Fri Jul 21 2006 John Dennis - 0.11-1 * add email alerts * stop the status icon from blinking, add notification balloon. * Fri Jul 21 2006 Dan Walsh - 0.10-1 - Fix startup order for setrobleshoot - Fix Plugins * Tue Jul 20 2006 Dan Walsh - 0.9-1 - Additional Plugins plus a lot of cleanup * Mon Jul 19 2006 Dan Walsh - 0.8-1 - Added a bunch more plugins - From 2006-07-19 Karl MacMillan - Add allow_cvs_read_shadow.py, allow_ftp_use_cifs, allow_ftp_use_nfs, and allow_gssd_read_tmp. - Change AVC to have additional helpers for matching messages. - Change Plugin to work better with more than one solution. * Mon Jul 19 2006 Dan Walsh - 0.7-1 - Fix setroubleshoot_dispatcher to catch all information from avc. Much cleaner interface and no longer uses audit2allow cruft. - Remove toolbar from popup window since it did nothing, and I think it looks better without it. - fix allow_execmod plugin to report better data. * Mon Jun 26 2006 John Dennis - 0.3-1 - add missing /var/log directory %files section in spec file, and add logrotate script * Mon Jun 26 2006 John Dennis - 0.2-1 - clean up spec file, reduce rpmlint complaints * Fri May 19 2006 John Dennis - 0.1-1 - Initial build.