- Upgrade to 0.99.1 and updated main.cvd and daily.cvd (#1314115)

- Complain about antivirus_use_jit rather clamd_use_jit (#1295473)

clamav-0.99.1-jitoff.patch

@@ -8,8 +8,8 @@
 +#
 +# This option has been set to 'ForceInterpreter' in Fedora due to
 +# security concerns by default.  You might need to enable the
-+# 'clamd_use_jit' SELinux boolean after setting this option to the
-+# more efficient 'ForceJIT' value.
++# 'antivirus_use_jit' SELinux boolean after setting this option to
++# the more efficient 'ForceJIT' value.
 +#
 +# Default: ForceInterpreter
 +#ByteCodeMode ForceInterpreter

clamav-0.99.1-setsebool.patch

@@ -0,0 +1,15 @@
+Patch by Robert Scheck <robert@fedoraproject.org> for clamav >= 0.99.1 which changes the SELinux
+boolean name from the obsolete (and former alias) clamd_use_jit to the current antivirus_use_jit.
+See also: https://bugzilla.redhat.com/show_bug.cgi?id=1295473
+
+--- clamav-0.99.1/libclamav/builtin_bytecodes.h			2015-12-11 17:26:02.000000000 +0100
++++ clamav-0.99.1/libclamav/builtin_bytecodes.h.setsebool	2016-03-29 23:32:03.000000000 +0200
+@@ -139,7 +139,7 @@
+         if (env.os_features & (1 << feature_selinux))
+           /* all SELinux versions deny RWX mapping when policy says so */
+           disable_jit_if("^SELinux is preventing 'execmem' access.\n"
+-                         "Run  'setsebool -P clamd_use_jit on'.", 0, 1);
++                         "Run 'setsebool -P antivirus_use_jit on'.", 0, 1);
+         else if (env.os_features & (1 << feature_pax))
+           /* recent versions of PaX deny RWX mapping */
+           disable_jit_if("^PaX is preventing 'mprotect' access.\n"

clamav.spec

@@ -57,8 +57,8 @@ Requires(postun):	 /bin/systemctl\
 
 Summary:	End-user tools for the Clam Antivirus scanner
 Name:		clamav
-Version:	0.99
-Release:	4%{?dist}
+Version:	0.99.1
+Release:	1%{?dist}
 License:	%{?with_unrar:proprietary}%{!?with_unrar:GPLv2}
 Group:		Applications/File
 URL:		http://www.clamav.net
@@ -74,16 +74,17 @@ Source0:	%name-%version%{?prerelease}-norar.tar.xz
 %endif
 # To download the *.cvd, go to http://www.clamav.net and use the links
 # there (I renamed the files to add the -version suffix for verifying).
-Source10:	http://db.local.clamav.net/main-55.cvd
-Source11:	http://db.local.clamav.net/daily-21123.cvd
+Source10:	http://db.local.clamav.net/main-57.cvd
+Source11:	http://db.local.clamav.net/daily-21478.cvd
 
 Patch24:	clamav-0.99-private.patch
 Patch26:	clamav-0.98.5-cliopts.patch
 Patch27:	clamav-0.98-umask.patch
 # https://bugzilla.redhat.com/attachment.cgi?id=403775&action=diff&context=patch&collapsed=&headers=1&format=raw
-Patch29:	clamav-0.99-jitoff.patch
+Patch29:	clamav-0.99.1-jitoff.patch
 # https://llvm.org/viewvc/llvm-project/llvm/trunk/lib/ExecutionEngine/JIT/Intercept.cpp?r1=128086&r2=137567
 Patch30:	llvm-glibc.patch
+Patch31:	clamav-0.99.1-setsebool.patch
 BuildRoot:	%_tmppath/%name-%version-%release-root
 Requires:	clamav-lib = %version-%release
 Requires:	data(clamav)
@@ -410,6 +411,7 @@ The systemd initscripts for clamav-scanner.
 %apply -n27 -p1 -b .umask
 %apply -n29 -p1 -b .jitoff
 %apply -n30 -p1
+%apply -n31 -p1 -b .setsebool
 %{?apply_end}
 
 install -p -m0644 %SOURCE300 clamav-milter/
@@ -893,6 +895,10 @@ test "$1" != "0" || /sbin/initctl -q stop clamav-milter || :
 
 
 %changelog
+* Tue Mar 29 2016 Robert Scheck <robert@fedoraproject.org> - 0.99.1-1
+- Upgrade to 0.99.1 and updated main.cvd and daily.cvd (#1314115)
+- Complain about antivirus_use_jit rather clamd_use_jit (#1295473)
+
 * Tue Mar 29 2016 Robert Scheck <robert@fedoraproject.org> - 0.99-4
 - Link using %%{?__global_ldflags} for hardened builds (#1321173)
 - Build using -std=gnu++98 (#1307378, thanks to Yaakov Selkowitz)

sources

@@ -1,3 +1,3 @@
-a972a59e09ef86fdfaaf028f714996e5  clamav-0.99-norar.tar.xz
-06f660f474d1a6863de4a00eb02521e3  main-55.cvd
-547dca19d7c3f1bfb51a3e0dad4ad52e  daily-21123.cvd
+6bf23527691890664c66e62e7bee44ff  clamav-0.99.1-norar.tar.xz
+85b8dd2229ba4a0ddd8bf048fe2b2078  main-57.cvd
+b82f2fc713069d378d79b8e4e3db0b74  daily-21478.cvd