4fcad70d3a
Merged loadable module support from Tresys Technology. Merged patch to prohibit the use of * and ~ in type sets (other than in neverallow statements) and in role sets from Joshua Brindle (Tresys). Updated version for release.
218 lines
6.3 KiB
RPMSpec
218 lines
6.3 KiB
RPMSpec
%define libsepolver 1.5.9-2
|
|
Summary: SELinux policy compiler
|
|
Name: checkpolicy
|
|
Version: 1.25.2
|
|
Release: 1
|
|
License: GPL
|
|
Group: Development/System
|
|
Source: http://www.nsa.gov/selinux/archives/%{name}-%{version}.tgz
|
|
Prefix: %{_prefix}
|
|
BuildRoot: %{_tmppath}/%{name}-buildroot
|
|
BuildRequires: byacc flex libsepol-devel >= %{libsepolver}
|
|
Requires: libsepol >= %{libsepolver}
|
|
|
|
%description
|
|
Security-enhanced Linux is a patch of the Linux® kernel and a number
|
|
of utilities with enhanced security functionality designed to add
|
|
mandatory access controls to Linux. The Security-enhanced Linux
|
|
kernel contains new architectural components originally developed to
|
|
improve the security of the Flask operating system. These
|
|
architectural components provide general support for the enforcement
|
|
of many kinds of mandatory access control policies, including those
|
|
based on the concepts of Type Enforcement®, Role-based Access
|
|
Control, and Multi-level Security.
|
|
|
|
This package contains checkpolicy, the SELinux policy compiler.
|
|
Only required for building policies.
|
|
|
|
%prep
|
|
%setup -q
|
|
|
|
%build
|
|
make LIBDIR="%{_libdir}" CFLAGS="%{optflags}"
|
|
|
|
%install
|
|
rm -rf ${RPM_BUILD_ROOT}
|
|
mkdir -p ${RPM_BUILD_ROOT}%{_bindir}
|
|
make DESTDIR="${RPM_BUILD_ROOT}" install
|
|
|
|
%clean
|
|
rm -rf ${RPM_BUILD_ROOT}
|
|
|
|
%files
|
|
%defattr(-,root,root)
|
|
%{_bindir}/checkpolicy
|
|
%{_mandir}/man8/checkpolicy.8.gz
|
|
|
|
%changelog
|
|
* Thu Jul 7 2005 Dan Walsh <dwalsh@redhat.com> 1.25.2-1
|
|
- Update to NSA Release
|
|
* Merged loadable module support from Tresys Technology.
|
|
* Merged patch to prohibit the use of * and ~ in type sets
|
|
(other than in neverallow statements) and in role sets
|
|
from Joshua Brindle (Tresys).
|
|
* Updated version for release.
|
|
|
|
* Fri May 20 2005 Dan Walsh <dwalsh@redhat.com> 1.23-4-1
|
|
- Update to NSA Release
|
|
* Merged cleanup patch from Dan Walsh.
|
|
|
|
* Thu May 19 2005 Dan Walsh <dwalsh@redhat.com> 1.23-3-1
|
|
- Update to NSA Release
|
|
* Added sepol_ prefix to Flask types to avoid namespace
|
|
collision with libselinux.
|
|
|
|
* Fri May 7 2005 Dan Walsh <dwalsh@redhat.com> 1.23-2-1
|
|
- Update to NSA Release
|
|
* Merged identifier fix from Joshua Brindle (Tresys).
|
|
|
|
* Thu Apr 14 2005 Dan Walsh <dwalsh@redhat.com> 1.23,1-1
|
|
* Merged hierarchical type/role patch from Tresys Technology.
|
|
* Merged MLS fixes from Darrel Goeddel of TCS.
|
|
|
|
* Thu Mar 10 2005 Dan Walsh <dwalsh@redhat.com> 1.22-1
|
|
- Update to NSA Release
|
|
|
|
* Tue Mar 1 2005 Dan Walsh <dwalsh@redhat.com> 1.21.4-2
|
|
- Rebuild for FC4
|
|
|
|
* Thu Feb 17 2005 Dan Walsh <dwalsh@redhat.com> 1.21.4-1
|
|
* Merged define_user() cleanup patch from Darrel Goeddel (TCS).
|
|
* Moved genpolusers utility to libsepol.
|
|
* Merged range_transition support from Darrel Goeddel (TCS).
|
|
|
|
* Thu Feb 10 2005 Dan Walsh <dwalsh@redhat.com> 1.21.2-1
|
|
- Latest from NSA
|
|
* Changed relabel Makefile target to use restorecon.
|
|
|
|
* Mon Feb 7 2005 Dan Walsh <dwalsh@redhat.com> 1.21.1-1
|
|
- Latest from NSA
|
|
* Merged enhanced MLS support from Darrel Goeddel (TCS).
|
|
|
|
* Fri Jan 7 2005 Dan Walsh <dwalsh@redhat.com> 1.20.1-1
|
|
- Update for version increase at NSA
|
|
|
|
* Mon Dec 20 2004 Dan Walsh <dwalsh@redhat.com> 1.19.2-1
|
|
- Latest from NSA
|
|
* Merged typeattribute statement patch from Darrel Goeddel of TCS.
|
|
* Changed genpolusers to handle multiple user config files.
|
|
* Merged nodecon ordering patch from Chad Hanson of TCS.
|
|
|
|
* Thu Nov 11 2004 Dan Walsh <dwalsh@redhat.com> 1.19.1-1
|
|
- Latest from NSA
|
|
* Merged nodecon ordering patch from Chad Hanson of TCS.
|
|
|
|
* Thu Nov 4 2004 Dan Walsh <dwalsh@redhat.com> 1.18.1-1
|
|
- Latest from NSA
|
|
* MLS build fix.
|
|
|
|
* Sat Sep 4 2004 Dan Walsh <dwalsh@redhat.com> 1.17.5-1
|
|
- Latest from NSA
|
|
* Fixed Makefile dependencies (Chris PeBenito).
|
|
|
|
* Sat Sep 4 2004 Dan Walsh <dwalsh@redhat.com> 1.17.4-1
|
|
- Latest from NSA
|
|
* Fixed Makefile dependencies (Chris PeBenito).
|
|
|
|
* Sat Sep 4 2004 Dan Walsh <dwalsh@redhat.com> 1.17.3-1
|
|
- Latest from NSA
|
|
* Merged fix for role dominance ordering issue from Chad Hanson of TCS.
|
|
|
|
* Mon Aug 30 2004 Dan Walsh <dwalsh@redhat.com> 1.17.2-1
|
|
- Latest from NSA
|
|
|
|
* Thu Aug 26 2004 Dan Walsh <dwalsh@redhat.com> 1.16.3-1
|
|
- Fix NSA package to not include y.tab files.
|
|
|
|
* Tue Aug 24 2004 Dan Walsh <dwalsh@redhat.com> 1.16.2-1
|
|
- Latest from NSA
|
|
- Allow port ranges to overlap
|
|
|
|
* Sun Aug 22 2004 Dan Walsh <dwalsh@redhat.com> 1.16.1-1
|
|
- Latest from NSA
|
|
|
|
* Mon Aug 16 2004 Dan Walsh <dwalsh@redhat.com> 1.15.6-1
|
|
- Latest from NSA
|
|
|
|
* Fri Aug 13 2004 Dan Walsh <dwalsh@redhat.com> 1.15.5-1
|
|
- Latest from NSA
|
|
|
|
* Wed Aug 11 2004 Dan Walsh <dwalsh@redhat.com> 1.15.4-1
|
|
- Latest from NSA
|
|
|
|
* Sat Aug 8 2004 Dan Walsh <dwalsh@redhat.com> 1.15.3-1
|
|
- Latest from NSA
|
|
|
|
* Wed Aug 4 2004 Dan Walsh <dwalsh@redhat.com> 1.15.2-1
|
|
- Latest from NSA
|
|
|
|
* Sat Jul 31 2004 Dan Walsh <dwalsh@redhat.com> 1.15.1-1
|
|
- Latest from NSA
|
|
|
|
* Tue Jul 27 2004 Dan Walsh <dwalsh@redhat.com> 1.14.2-1
|
|
- Latest from NSA
|
|
|
|
* Wed Jun 30 2004 Dan Walsh <dwalsh@redhat.com> 1.14.1-1
|
|
- Latest from NSA
|
|
|
|
* Fri Jun 18 2004 Dan Walsh <dwalsh@redhat.com> 1.12.2-1
|
|
- Latest from NSA
|
|
|
|
* Thu Jun 17 2004 Dan Walsh <dwalsh@redhat.com> 1.12.1-1
|
|
- Update to latest from NSA
|
|
|
|
* Wed Jun 16 2004 Dan Walsh <dwalsh@redhat.com> 1.12-1
|
|
- Update to latest from NSA
|
|
|
|
* Wed Jun 16 2004 Dan Walsh <dwalsh@redhat.com> 1.10-5
|
|
- Add nlclass patch
|
|
|
|
* Tue Jun 15 2004 Elliot Lee <sopwith@redhat.com>
|
|
- rebuilt
|
|
|
|
* Fri Jun 4 2004 Dan Walsh <dwalsh@redhat.com> 1.10-3
|
|
- Add BuildRequires flex
|
|
|
|
* Thu Apr 8 2004 Dan Walsh <dwalsh@redhat.com> 1.10-2
|
|
- Add BuildRequires byacc
|
|
|
|
* Thu Apr 8 2004 Dan Walsh <dwalsh@redhat.com> 1.10-1
|
|
- Upgrade to the latest from NSA
|
|
|
|
* Mon Mar 15 2004 Dan Walsh <dwalsh@redhat.com> 1.8-1
|
|
- Upgrade to the latest from NSA
|
|
|
|
* Mon Feb 24 2004 Dan Walsh <dwalsh@redhat.com> 1.6-1
|
|
- Upgrade to the latest from NSA
|
|
|
|
* Fri Feb 13 2004 Elliot Lee <sopwith@redhat.com>
|
|
- rebuilt
|
|
|
|
* Tue Jan 20 2004 Dan Walsh <dwalsh@redhat.com> 1.4-6
|
|
- Add typealias patch
|
|
|
|
* Tue Jan 20 2004 Dan Walsh <dwalsh@redhat.com> 1.4-5
|
|
- Update excludetypes with negset-final patch
|
|
|
|
* Wed Jan 14 2004 Dan Walsh <dwalsh@redhat.com> 1.4-4
|
|
- Add excludetypes patch
|
|
|
|
* Wed Jan 14 2004 Dan Walsh <dwalsh@redhat.com> 1.4-3
|
|
- Add Colin Walter's lineno patch
|
|
|
|
* Wed Jan 7 2004 Dan Walsh <dwalsh@redhat.com> 1.4-2
|
|
- Remove check for roles transition
|
|
|
|
* Sat Dec 6 2003 Dan Walsh <dwalsh@redhat.com> 1.4-1
|
|
- upgrade to 1.4
|
|
|
|
* Wed Oct 1 2003 Dan Walsh <dwalsh@redhat.com> 1.2-1
|
|
- upgrade to 1.2
|
|
|
|
* Thu Aug 28 2003 Dan Walsh <dwalsh@redhat.com> 1.1-2
|
|
- upgrade to 1.1
|
|
|
|
* Mon Jun 2 2003 Dan Walsh <dwalsh@redhat.com> 1.0-1
|
|
- Initial version
|
|
|