rpms/libselinux
3
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
422 Commits 40 Branches 400 Tags 3.6 MiB
3c1b814b3d
Commit Graph

399 Commits

Author SHA1 Message Date
Daniel J Walsh
cd000f17c0 - Add new function getseuser which will take username and service and 
return
- seuser and level. ipa will populate file in future.
- Change selinuxdefcon to return just the context by default
 2008-12-12 15:21:10 +00:00
Ignacio Vazquez-Abrams
fdb97bc4bb Rebuild for Python 2.6 2008-11-29 16:48:05 +00:00
Daniel J Walsh
f53982306d - Update to Upstream 
Allow shell-style wildcards in x_contexts file.
 2008-11-21 21:06:11 +00:00
Daniel J Walsh
41931f8d57 - Eamon Walsh Patch - libselinux: allow shell-style wildcarding in X names 
- Add Restorecon/Install python functions from Luke Macken
 2008-11-17 15:27:48 +00:00
Daniel J Walsh
d3b013d124 - Update to Upstream 
Correct message types in AVC log messages.
Make matchpathcon -V pass mode from Dan Walsh.
Add man page for selinux_file_context_cmp from Dan Walsh.
 2008-11-07 14:08:36 +00:00
Daniel J Walsh
3898d8da39 - Update to Upstream 
New man pages from Dan Walsh.
Update flask headers from refpolicy trunk from Dan Walsh.
 2008-09-30 13:30:18 +00:00
Daniel J Walsh
263ee4f1ec - Fix matchpathcon -V call 2008-09-26 14:22:14 +00:00
Daniel J Walsh
3578778806 - Add flask definitions for open, X and nlmsg_tty_audit 2008-09-22 17:52:30 +00:00
Daniel J Walsh
15c5a627bc - Add missing get/setkeycreatecon man pages 2008-09-09 20:24:22 +00:00
Daniel J Walsh
fa0215ab2a - Split out utilities 2008-09-09 19:07:33 +00:00
Daniel J Walsh
ac4e772e3d - Add missing man page links for [lf]getfilecon 2008-09-09 18:45:26 +00:00
Daniel J Walsh
7918b2858e - Update to Upstream 
Add group support to seusers using %groupname syntax from Dan Walsh.
Mark setrans socket close-on-exec from Stephen Smalley.
Only apply nodups checking to base file contexts from Stephen Smalley.
 2008-08-05 14:05:15 +00:00
Daniel J Walsh
86ce8d44b1 - Update to Upstream 
Merge ruby bindings from Dan Walsh.
- Add support for Linux groups to getseuserbyname
 2008-08-01 10:56:37 +00:00
Daniel J Walsh
0397b472b7 - Update to Upstream 
Handle duplicate file context regexes as a fatal error from Stephen
    Smalley. This prevents adding them via semanage.
Fix audit2why shadowed variables from Stephen Smalley.
Note that freecon NULL is legal in man page from Karel Zak.
 2008-07-29 18:37:01 +00:00
Daniel J Walsh
d0a06b2c34 - Update to Upstream 
Handle duplicate file context regexes as a fatal error from Stephen
    Smalley. This prevents adding them via semanage.
Fix audit2why shadowed variables from Stephen Smalley.
Note that freecon NULL is legal in man page from Karel Zak.
 2008-07-29 13:22:45 +00:00
Daniel J Walsh
ee778682f8 - Add ruby support for puppet 2008-07-09 20:57:21 +00:00
Daniel J Walsh
c56d166bb6 - Rebuild for new libsepol 2008-07-08 12:07:38 +00:00
Daniel J Walsh
ea56feab06 - Add Karel Zak patch for freecon man page 2008-06-29 12:31:00 +00:00
Daniel J Walsh
e434a93ac5 - Update to Upstream 
New and revised AVC, label, and mapping man pages from Eamon Walsh.
Add swig python bindings for avc interfaces from Dan Walsh.
 2008-06-26 12:14:16 +00:00
Daniel J Walsh
6359e2ad79 - Update to Upstream 
New and revised AVC, label, and mapping man pages from Eamon Walsh.
Add swig python bindings for avc interfaces from Dan Walsh.
 2008-06-22 13:48:37 +00:00
Daniel J Walsh
fc4f6a4f7d - Update to Upstream 
Fix selinux_file_context_verify() and selinux_lsetfilecon_default() to call
    matchpathcon_init_prefix if not already initialized.
Add -q qualifier for -V option of matchpathcon and change it to indicate
    whether verification succeeded or failed via exit status.
 2008-06-22 13:42:52 +00:00
Daniel J Walsh
bff583b68b - Update to Upstream 
Fix selinux_file_context_verify() and selinux_lsetfilecon_default() to call
    matchpathcon_init_prefix if not already initialized.
Add -q qualifier for -V option of matchpathcon and change it to indicate
    whether verification succeeded or failed via exit status.
 2008-05-28 14:15:30 +00:00
Daniel J Walsh
454774e22d remove telinit -u, no longer needed 2008-05-16 19:04:17 +00:00
Daniel J Walsh
792921f4eb - Add sedefaultcon and setconlist commands to dump login context 2008-05-07 17:34:12 +00:00
Daniel J Walsh
1209c857ab - Update to Upstream 
Fixed selinux_set_callback man page.
Try loading the max of the kernel-supported version and the
    libsepol-supported version when no manipulation of the binary policy is
    needed from Stephen Smalley.
Fix memory leaks in matchpathcon from Eamon Walsh.
 2008-04-22 20:59:01 +00:00
Daniel J Walsh
d87adcfe95 - Add avc.h to swig code 2008-04-14 18:54:09 +00:00
Daniel J Walsh
9d13c9cd97 - Update to Upstream 
Man page typo fix from Jim Meyering.
 2008-04-01 04:16:52 +00:00
Daniel J Walsh
7384c1ecca Changed selinux_init_load_policy() to not warn about a failed mount of 
selinuxfs if selinux was disabled in the kernel.
 2008-03-23 11:32:37 +00:00
Daniel J Walsh
eb8e2a0d36 - Fix matchpathcon memory leak 2008-03-13 23:45:19 +00:00
Daniel J Walsh
4594aed06b - Update to Upstream 
Merged new X label "poly_selection" namespace from Eamon Walsh.
 2008-02-29 20:24:11 +00:00
Daniel J Walsh
0984abe5d8 - Update to Upstream 
Merged reset_selinux_config() for load policy from Dan Walsh.
 2008-02-28 21:06:47 +00:00
Daniel J Walsh
baab9d46ea - Reload library on loading of policy to handle chroot 2008-02-28 16:58:02 +00:00
Daniel J Walsh
73272f9b7d - Update to Upstream 
Merged avc_has_perm() errno fix from Eamon Walsh.
 2008-02-25 20:51:42 +00:00
Daniel J Walsh
3cb08a5330 - Update to Upstream 
Regenerated Flask headers from refpolicy flask definitions.
 2008-02-22 17:41:12 +00:00
Daniel J Walsh
198adb1f17 - Update to Upstream 
Merged compute_member AVC function and manpages from Eamon Walsh.
Provide more error reporting on load policy failures from Stephen Smalley.
 2008-02-13 16:18:16 +00:00
Daniel J Walsh
099d39a6e5 - Update to Upstream 
Merged new X label "poly_prop" namespace from Eamon Walsh.
 2008-02-08 15:45:10 +00:00
Daniel J Walsh
fc1475fc7f - Update to Upstream 
Disable setlocaldefs if no local boolean or users files are present from
    Stephen Smalley.
Skip userspace preservebools processing for Linux >= 2.6.22 from Stephen
    Smalley.
 2008-02-06 21:46:59 +00:00
Daniel J Walsh
8f9ecf5890 - Update to Upstream 
Merged fix for audit2why from Dan Walsh.
 2008-01-29 13:29:32 +00:00
Daniel J Walsh
213643620c - Fix audit2why to grab latest policy versus the one selected by the kernel 2008-01-25 16:11:42 +00:00
Daniel J Walsh
e4623197a5 Merged audit2why python binding from Dan Walsh. 2008-01-23 21:52:01 +00:00
Daniel J Walsh
c633d69a56 Merged updated swig bindings from Dan Walsh, including typemap for pid_t. 2008-01-23 19:40:26 +00:00
Daniel J Walsh
c097aeffd4 - Update to use libsepol-static library 2008-01-21 21:42:38 +00:00
Daniel J Walsh
45460445ad - Put back libselinux.a 2008-01-15 13:49:29 +00:00
Daniel J Walsh
5c1daf361c - Put back libselinux.a 2008-01-15 13:48:24 +00:00
Daniel J Walsh
2f233dfd7a - Fix memory references in audit2why and change to use tuples 
- Update to Upstream
granted null message bug from Stephen Smalley.
 2008-01-11 15:55:35 +00:00
Daniel J Walsh
88cc8f8805 - Fix __init__.py specification 2008-01-11 13:48:43 +00:00
Daniel J Walsh
831e63b413 - Add audit2why python bindings 2008-01-10 19:01:20 +00:00
Daniel J Walsh
d189708d7a - Add audit2why python bindings 2008-01-10 19:00:33 +00:00
Daniel J Walsh
4676dbee55 - Add audit2why python bindings 2008-01-10 18:44:50 +00:00
Daniel J Walsh
082b5c93a4 - Add audit2why python bindings 2008-01-10 18:44:01 +00:00
Daniel J Walsh
9ec7726e1d - Add audit2why python bindings 2008-01-10 18:32:52 +00:00
Daniel J Walsh
625a8fb5a8 - Add pid_t typemap for swig bindings 2008-01-08 11:07:27 +00:00
Daniel J Walsh
5866f48366 - smp_mflag 2008-01-03 20:39:20 +00:00
Daniel J Walsh
e1e36a0421 - Fix spec file caused by spec review 2008-01-03 20:29:21 +00:00
Daniel J Walsh
41bd3b2ae1 - Upgrade to upstream 
matchpathcon(8) man page update from Dan Walsh.
 2007-12-11 02:52:13 +00:00
Daniel J Walsh
c4aa29e945 - Upgrade to upstream 
dlopen libsepol.so.1 rather than libsepol.so from Stephen Smalley.
Based on a suggestion from Ulrich Drepper, defer regex compilation until we
    have a stem match, by Stephen Smalley.
A further optimization would be to defer regex compilation until we have a
    complete match of the constant prefix of the regex - TBD.
 2007-11-30 20:13:08 +00:00
Daniel J Walsh
2a8f17ac0d - Upgrade to upstream 
AVC enforcing mode override patch from Eamon Walsh.
Aligned attributes in AVC netlink code from Eamon Walsh.
- Move libselinux.so back into devel package, procps has been fixed
 2007-11-15 15:29:15 +00:00
Daniel J Walsh
79584e53ac - Upgrade to upstream 
Merged refactored AVC netlink code from Eamon Walsh.
Merged new X label namespaces from Eamon Walsh.
Bux fix and minor refactoring in string representation code.
 2007-11-06 18:03:37 +00:00
Daniel J Walsh
39606ee687 - Upgrade to upstream 
Merged selinux_get_callback, avc_open, empty string mapping from Eamon
    Walsh.
 2007-10-05 17:20:30 +00:00
Daniel J Walsh
dcd9773ab2 - Fix segfault on missing file_context file 2007-09-27 17:55:13 +00:00
Daniel J Walsh
7cbfb0e27a - Upgrade to upstream 
Make netlink socket close-on-exec to avoid descriptor leakage from Dan
    Walsh.
Pass CFLAGS when using gcc for linking from Dennis Gilmore.
 2007-09-27 14:54:10 +00:00
Daniel J Walsh
ae054c560b *** empty log message *** 2007-09-24 15:56:01 +00:00
Daniel J Walsh
0102138c4a *** empty log message *** 2007-09-24 15:42:11 +00:00
Daniel J Walsh
0fa749d083 *** empty log message *** 2007-09-18 20:44:47 +00:00
Daniel J Walsh
71cd1381ef *** empty log message *** 2007-09-18 15:37:42 +00:00
Daniel J Walsh
31de56ffa4 *** empty log message *** 2007-09-13 12:29:38 +00:00
Daniel J Walsh
6a9919e596 *** empty log message *** 2007-09-06 12:37:00 +00:00
Daniel J Walsh
4e3172796e *** empty log message *** 2007-08-28 15:27:49 +00:00
Daniel J Walsh
13a4ef3ffe *** empty log message *** 2007-08-23 20:56:16 +00:00
Daniel J Walsh
fd5d99a5df *** empty log message *** 2007-08-21 19:45:34 +00:00
Daniel J Walsh
0e28882119 *** empty log message *** 2007-08-10 16:09:35 +00:00
Daniel J Walsh
569b015f4c *** empty log message *** 2007-08-10 16:01:16 +00:00
Daniel J Walsh
f3308819df *** empty log message *** 2007-08-10 15:46:47 +00:00
Daniel J Walsh
6e60f16b98 *** empty log message *** 2007-08-03 20:06:53 +00:00
Daniel J Walsh
44ef5d5d9f - Apply Steven Smalley patch to fix segfault in string_to_security_class 2007-07-23 14:23:50 +00:00
Daniel J Walsh
aebde7523f - Fix matchpathcon to set default myprintf 2007-07-18 17:54:00 +00:00
Daniel J Walsh
571ac2998d - Upgrade to upstream 
Fix for getfilecon() for zero-length contexts from Stephen Smalley.
 2007-07-16 18:22:25 +00:00
Daniel J Walsh
8ffc2801ed - Update to match flask/access_vectors in policy 2007-07-11 14:52:47 +00:00
Daniel J Walsh
8e8fca8665 - Fix man page markup lanquage for translations 2007-07-10 16:27:52 +00:00
Daniel J Walsh
3e1ba6da3a - Fix semanage segfault on x86 platform 2007-06-26 09:16:06 +00:00
Daniel J Walsh
029d48694c - Upgrade to upstream 
Labeling and callback interface patches from Eamon Walsh.
 2007-06-21 15:34:10 +00:00
Daniel J Walsh
d43108c05f - Upgrade to upstream 
Labeling and callback interface patches from Eamon Walsh.
 2007-06-21 14:40:52 +00:00
Daniel J Walsh
2324fecc2d - Upgrade to upstream 
Class and permission mapping support patches from Eamon Walsh.
Object class discovery support patches from Chris PeBenito.
Refactoring and errno support in string representation code.
 2007-06-11 18:39:53 +00:00
Daniel J Walsh
d60d4d2e31 - Upgrade to upstream 
Merged patch to reduce size of libselinux and remove need for libsepol for
    embedded systems from Yuichi Nakamura. This patch also turns the
    link-time dependency on libsepol into a runtime (dlopen) dependency
    even in the non-embedded case.
 2007-06-01 14:48:48 +00:00
Daniel J Walsh
35bc5a8a68 - Upgrade to upstream 
Merged additional swig python bindings from Dan Walsh.
Merged helpful message when selinuxfs mount fails patch from Dax Kelson.
 2007-05-18 14:52:28 +00:00
Daniel J Walsh
20f7b1cb99 - Upgrade to upstream 
Merged build fix for avc_internal.c from Joshua Brindle.
 2007-04-24 14:48:35 +00:00
Daniel J Walsh
4dca0c42c9 - Add get_context_list funcitions to swig file 2007-04-23 14:38:02 +00:00
Daniel J Walsh
a11359c0ea - Upgrade to upstream 
Merged rpm_execcon python binding fix, matchpathcon man page fix, and
    getsebool -a handling for EACCES from Dan Walsh.
 2007-04-12 20:07:39 +00:00
Daniel J Walsh
6265db0381 2007-04-12 16:50:49 +00:00
Daniel J Walsh
1b14f693da - Upgrade to upstream 
Merged support for getting initial contexts from James Carter.
 2007-04-11 13:12:34 +00:00
Daniel J Walsh
47b511b094 - Upgrade to upstream 
Merged userspace AVC patch to follow kernel's behavior for permissive mode
    in caching previous denials from Eamon Walsh.
Merged sidput(NULL) patch from Eamon Walsh.
 2007-04-09 19:50:05 +00:00
Daniel J Walsh
ff4b4da61f - Make rpm_exec swig work 2007-04-05 15:57:35 +00:00
Daniel J Walsh
ace2ebf6d7 - Upgrade to upstream 
Merged class/av string conversion and avc_compute_create patch from Eamon
    Walsh.
 2007-04-02 19:14:28 +00:00
Daniel J Walsh
9a53490979 - Upgrade to upstream 
Merged fix for avc.h #include's from Eamon Walsh.
 2007-03-27 20:07:00 +00:00
Daniel J Walsh
71021c8327 - Upgrade to upstream 
Merged fix for avc.h #include's from Eamon Walsh.
 2007-03-27 19:49:37 +00:00
Daniel J Walsh
98a61bfb92 - Add stdint.h to avc.h 2007-03-22 20:50:31 +00:00
Daniel J Walsh
22298b4b74 Merged patch to drop support for CACHETRANS=0 config option from Steve 
Grubb.
Merged patch to drop support for old /etc/sysconfig/selinux and
    /etc/security policy file layout from Steve Grubb.
 2007-03-13 00:20:29 +00:00
Daniel J Walsh
c7862e54aa - Do not fail on permission denied in getsebool 2007-03-08 16:15:36 +00:00
Daniel J Walsh
21eddb1fd0 - Upgrade to upstream 
Merged init_selinuxmnt() and is_selinux_enabled() improvements from Steve
    Grubb.
 2007-02-27 16:27:02 +00:00
Daniel J Walsh
8efd1ef10e - Upgrade to upstream 
Removed sending of setrans init message.
Merged matchpathcon memory leak fix from Steve Grubb.
 2007-02-23 21:49:32 +00:00