Commit Graph

323 Commits

Author SHA1 Message Date
Daniel J Walsh
1d69704875 - Update from NSA
Prevent overflow of spec array in matchpathcon.
Fixed several uses of internal functions to avoid relocations.
Changed rpm_execcon to check is_selinux_enabled() and fallback to a regular
    execve if not enabled (or unable to determine due to a lack of /proc,
    e.g. chroot'd environment).
2005-01-28 17:19:20 +00:00
Daniel J Walsh
cc65d5b546 - Update from NSA
Merged minor fix for avcstat from Dan Walsh.
2005-01-26 16:36:33 +00:00
Daniel J Walsh
e0a30a3da4 - rpmexeccon should not fail in permissive mode. 2005-01-24 20:46:24 +00:00
Daniel J Walsh
ca41c6e4bb - fix printf in avcstat 2005-01-21 20:57:55 +00:00
Daniel J Walsh
e1e9d62ce4 - Update from NSA 2005-01-20 13:58:18 +00:00
Daniel J Walsh
958b6d4982 - Modify matchpathcon to also process file_contexts.local if it exists 2005-01-18 22:27:57 +00:00
Daniel J Walsh
ae6f77c9ad - Add is_customizable_types function call 2005-01-12 14:37:21 +00:00
Daniel J Walsh
dffd9eaafd - Update to latest from upstream
Just changing version number to match upstream
2005-01-07 14:48:24 +00:00
Daniel J Walsh
c88fca683f - Update to latest from upstream
Changed matchpathcon to return -1 with errno ENOENT for <<none>> entries,
    and also for an empty file_contexts configuration.
2004-12-29 17:08:58 +00:00
Daniel J Walsh
7aa4e97275 - Fix link devel libraries 2004-12-28 15:40:26 +00:00
Daniel J Walsh
4f73d76fa3 - Fix unitialized variable in avcstat.c 2004-12-27 11:53:31 +00:00
Daniel J Walsh
e836ab9afb fix spec file 2004-12-20 14:25:06 +00:00
Daniel J Walsh
8ecfe2db4e - Upgrade to upstream
Removed some trivial utils that were not useful or redundant.
Changed BINDIR default to /usr/sbin to match change in Fedora.
Added security_compute_member.
Added man page for setcon.
2004-12-03 19:41:58 +00:00
Daniel J Walsh
cc63ca70ad - Upgrade to upstream 2004-12-01 01:31:34 +00:00
Daniel J Walsh
5d71053bd0 - Add avcstat program 2004-11-18 21:30:11 +00:00
Daniel J Walsh
6864134300 - Add avcstat program 2004-11-18 21:29:18 +00:00
Daniel J Walsh
2a0f8bbed9 - Add lots of missing man pages 2004-11-15 20:13:52 +00:00
Daniel J Walsh
4962db3e56 - Add lots of missing man pages 2004-11-15 20:05:55 +00:00
Daniel J Walsh
437c89fe9f - Fix output of getsebool. 2004-11-12 13:03:50 +00:00
Daniel J Walsh
38be80f2c3 - Update from upstream, fix setsebool -P segfault 2004-11-09 14:24:39 +00:00
Steve Grubb
37dbcb478d added patch from upstream 2004-11-05 22:26:36 +00:00
Daniel J Walsh
407b1fe335 - More fixes from sgrubb, better syslog 2004-11-04 18:25:37 +00:00
Steve Grubb
aed8abc66c spec file correction. 2004-11-04 17:30:03 +00:00
Daniel J Walsh
efa62ac4a5 - Have sesebool log to syslog 2004-11-04 15:50:24 +00:00
Daniel J Walsh
35c4f2492c fix spec file 2004-11-03 20:55:44 +00:00
Steve Grubb
71b3b1c0e0 Add patch to make setsebool update bool on disk. Make togglesebool have a
rollback capability in case it blows up inflight.
2004-11-03 20:50:26 +00:00
Daniel J Walsh
cfb1f307ae - Upgrade to latest from NSA 2004-11-02 19:47:54 +00:00
Steve Grubb
1d320842ce Updated 2 previous patches to output Usage before checking if selinux is
enabled. Apply a patch that fixes signed/unsigned issues and a memory
    leak.
2004-11-01 18:56:08 +00:00
Steve Grubb
76a08583da Move utilities to /usr/sbin 2004-10-28 21:25:27 +00:00
Steve Grubb
4af2226534 Adding patches for specfile 2004-10-27 20:53:11 +00:00
Daniel J Walsh
b2c3e1fca2 add -g to build and update with rpmexec 2004-10-15 13:42:33 +00:00
Daniel J Walsh
224faef153 update to NSA version 2004-10-06 14:03:28 +00:00
Daniel J Walsh
828726ceed change setenforce to accept Enforcing. permissive 2004-10-01 18:56:25 +00:00
Daniel J Walsh
72ef06e71f add alpha patch 2004-09-22 12:06:18 +00:00
Daniel J Walsh
228dd64e4f latest from NSA 2004-09-20 19:50:16 +00:00
Daniel J Walsh
dfa5fafe1b add removable_context path 2004-09-16 14:47:36 +00:00
Daniel J Walsh
0474ff5fef NSA Cleanup 2004-09-15 14:14:10 +00:00
Daniel J Walsh
39b34ebda7 latest from NSA 2004-09-14 13:43:57 +00:00
Daniel J Walsh
791a651339 add nscd perms 2004-09-14 13:39:22 +00:00
Daniel J Walsh
dcf4ba68c9 latest from NSA 2004-09-10 18:40:42 +00:00
Daniel J Walsh
9a368c5f7b add matchmediacon 2004-09-10 17:27:19 +00:00
cvsdist
aca62f6df6 auto-import changelog data from libselinux-1.17.9-1.src.rpm
Wed Sep 08 2004 Dan Walsh <dwalsh@redhat.com> 1.17.9-1
- Update from NSA
Added get_default_context_with_role.
2004-09-09 07:46:10 +00:00
cvsdist
1591c8d77a auto-import libselinux-1.17.8-2 from libselinux-1.17.8-2.src.rpm 2004-09-09 07:45:58 +00:00
cvsdist
f453bd1f3d auto-import changelog data from libselinux-1.17.8-1.src.rpm
Thu Sep 02 2004 Dan Walsh <dwalsh@redhat.com> 1.17.8-1
- Update from NSA
Added set_matchpathcon_printf.
Wed Sep 01 2004 Dan Walsh <dwalsh@redhat.com> 1.17.7-1
- Update from NSA
Reworked av_inherit.h to allow easier re-use by kernel.
2004-09-09 07:45:53 +00:00
cvsdist
b320ff19bb auto-import libselinux-1.17.7-1 from libselinux-1.17.7-1.src.rpm 2004-09-09 07:45:43 +00:00
cvsdist
e34dcc2219 auto-import changelog data from libselinux-1.17.6-1.src.rpm
Tue Aug 31 2004 Dan Walsh <dwalsh@redhat.com> 1.17.6-1
- Add strcasecmp in selinux_config
- Update from NSA
Changed avc_has_perm_noaudit to not fail on netlink errors.
Changed avc netlink code to check pid based on patch by Steve Grubb.
Merged second optimization patch from Ulrich Drepper.
Changed matchpathcon to skip invalid file_contexts entries.
Made string tables private to libselinux.
Merged strcat->stpcpy patch from Ulrich Drepper.
Merged matchpathcon man page from Dan Walsh.
Merged patch to eliminate PLTs for local syms from Ulrich Drepper.
Autobind netlink socket.
Dropped compatibility code from security_compute_user.
Merged fix for context_range_set from Chad Hanson.
Merged allocation failure checking patch from Chad Hanson.
Merged avc netlink error message patch from Colin Walters.
2004-09-09 07:45:35 +00:00
cvsdist
4b578fd4a9 auto-import libselinux-1.17.5-1 from libselinux-1.17.5-1.src.rpm 2004-09-09 07:45:27 +00:00
cvsdist
052a62dd21 auto-import changelog data from libselinux-1.17.4-1.src.rpm
Mon Aug 30 2004 Dan Walsh <dwalsh@redhat.com> 1.17.4-1
- Update from NSA
- Add optflags
2004-09-09 07:45:21 +00:00
cvsdist
f991fab43a auto-import libselinux-1.17.3-1 from libselinux-1.17.3-1.src.rpm 2004-09-09 07:45:16 +00:00
cvsdist
6df57245c3 auto-import changelog data from libselinux-1.17.2-1.src.rpm
Thu Aug 26 2004 Dan Walsh <dwalsh@redhat.com> 1.17.2-1
- Add matchpathcon man page
- Latest from NSA
Merged patch to eliminate PLTs for local syms from Ulrich Drepper.
Autobind netlink socket.
Dropped compatibility code from security_compute_user.
Merged fix for context_range_set from Chad Hanson.
Merged allocation failure checking patch from Chad Hanson.
Merged avc netlink error message patch from Colin Walters.
2004-09-09 07:45:13 +00:00
cvsdist
569258dd79 auto-import changelog data from libselinux-1.17.1-1.src.rpm
Tue Aug 24 2004 Dan Walsh <dwalsh@redhat.com> 1.17.1-1
- Latest from NSA
Autobind netlink socket.
Dropped compatibility code from security_compute_user.
Merged fix for context_range_set from Chad Hanson.
Merged allocation failure checking patch from Chad Hanson.
Merged avc netlink error message patch from Colin Walters.
2004-09-09 07:45:06 +00:00
cvsdist
c722471fde auto-import changelog data from libselinux-1.16.1-1.src.rpm
Sun Aug 22 2004 Dan Walsh <dwalsh@redhat.com> 1.16.1-1
- Latest from NSA
2004-09-09 07:44:55 +00:00
cvsdist
1e259b6254 auto-import changelog data from libselinux-1.16-1.src.rpm
Thu Aug 19 2004 Colin Walters <walters@redhat.com> 1.16-1
- New upstream version
2004-09-09 07:44:50 +00:00
cvsdist
998a860c58 auto-import changelog data from libselinux-1.15.7-1.src.rpm
Tue Aug 17 2004 Dan Walsh <dwalsh@redhat.com> 1.15.7-1
- Latest from Upstream
2004-09-09 07:44:47 +00:00
cvsdist
d4d9fd7e66 auto-import libselinux-1.15.6-1 from libselinux-1.15.6-1.src.rpm 2004-09-09 07:44:43 +00:00
cvsdist
431f96de8c auto-import changelog data from libselinux-1.15.5-1.src.rpm
Mon Aug 16 2004 Dan Walsh <dwalsh@redhat.com> 1.15.5-1
- Latest from Upstream
2004-09-09 07:44:40 +00:00
cvsdist
a23f3d806f auto-import changelog data from libselinux-1.15.4-1.src.rpm
Fri Aug 13 2004 Dan Walsh <dwalsh@redhat.com> 1.15.4-1
- Latest from Upstream
2004-09-09 07:44:23 +00:00
cvsdist
26188d788e auto-import changelog data from libselinux-1.15.3-2.src.rpm
Thu Aug 12 2004 Dan Walsh <dwalsh@redhat.com> 1.15.3-2
- Add man page for boolean functions and SELinux
2004-09-09 07:44:20 +00:00
cvsdist
6edaf310fa auto-import changelog data from libselinux-1.15.3-1.src.rpm
Sun Aug 08 2004 Dan Walsh <dwalsh@redhat.com> 1.15.3-1
- Latest from NSA
2004-09-09 07:44:11 +00:00
cvsdist
bb1a93f6eb auto-import libselinux-1.15.2-1 from libselinux-1.15.2-1.src.rpm 2004-09-09 07:43:48 +00:00
cvsdist
f55e3951ca auto-import changelog data from libselinux-1.15.1-3.src.rpm
Mon Jul 19 2004 Dan Walsh <dwalsh@redhat.com> 1.15.1-3
- uppercase getenforce returns, to make them match
    system-config-securitylevel
Thu Jul 15 2004 Dan Walsh <dwalsh@redhat.com> 1.15.1-2
- Remove old path patch
2004-09-09 07:43:46 +00:00
cvsdist
c391d58b0b auto-import changelog data from libselinux-1.15.1-1.src.rpm
Thu Jul 08 2004 Dan Walsh <dwalsh@redhat.com> 1.15.1-1
- Update to latest from NSA
- Add fix to only get old path if file_context file exists in old location
2004-09-09 07:43:41 +00:00
cvsdist
df7994567e auto-import changelog data from libselinux-1.14.1-1.src.rpm
Wed Jun 30 2004 Dan Walsh <dwalsh@redhat.com> 1.14.1-1
- Update to latest from NSA
2004-09-09 07:43:37 +00:00
cvsdist
eaa3e6ecb8 auto-import changelog data from libselinux-1.13.4-1.src.rpm
Wed Jun 16 2004 Dan Walsh <dwalsh@redhat.com> 1.13.4-1
- add nlclass patch
- Update to latest from NSA
2004-09-09 07:43:32 +00:00
cvsdist
b832765bf4 auto-import changelog data from libselinux-1.13.3-3.src.rpm
Tue Jun 15 2004 Elliot Lee <sopwith@redhat.com>
- rebuilt
2004-09-09 07:43:27 +00:00
cvsdist
2eea259b1c auto-import changelog data from libselinux-1.13.3-2.src.rpm
Sun Jun 13 2004 Dan Walsh <dwalsh@redhat.com> 1.13.3-2
- Fix selinux_config to break once it finds SELINUXTYPE.
2004-09-09 07:43:22 +00:00
cvsdist
fdbc02588c auto-import libselinux-1.13.3-1 from libselinux-1.13.3-1.src.rpm 2004-09-09 07:43:01 +00:00
cvsdist
6644b137d5 auto-import changelog data from libselinux-1.13.2-1.src.rpm
Fri May 28 2004 Dan Walsh <dwalsh@redhat.com> 1.13.2-1
-Update with latest from NSA
2004-09-09 07:42:52 +00:00
cvsdist
cca6a80b71 auto-import changelog data from libselinux-1.13.1-1.src.rpm
Thu May 27 2004 Dan Walsh <dwalsh@redhat.com> 1.13.1-1
- Change to use new policy mechanism
2004-09-09 07:42:50 +00:00
cvsdist
f9343ddbdd auto-import changelog data from libselinux-1.13-1.src.rpm
Mon May 17 2004 Dan Walsh <dwalsh@redhat.com> 1.12-2
- add man patch
Fri May 14 2004 Dan Walsh <dwalsh@redhat.com> 1.12-1
- Update with latest from NSA
2004-09-09 07:42:46 +00:00
cvsdist
adad8e9a40 auto-import changelog data from libselinux-1.11.4-1.src.rpm
Wed May 05 2004 Dan Walsh <dwalsh@redhat.com> 1.11.4-1
- Update with latest from NSA
Thu Apr 22 2004 Dan Walsh <dwalsh@redhat.com> 1.11.3-1
- Add changes for relaxed policy
- Update to match NSA
Thu Apr 15 2004 Dan Walsh <dwalsh@redhat.com> 1.11.2-1
- Add relaxed policy changes
Thu Apr 15 2004 Dan Walsh <dwalsh@redhat.com> 1.11-4
- Sync with NSA
Thu Apr 15 2004 Dan Walsh <dwalsh@redhat.com> 1.11-3
- Remove requires glibc>2.3.4
Wed Apr 14 2004 Dan Walsh <dwalsh@redhat.com> 1.11-2
- Fix selinuxenabled man page.
Wed Apr 07 2004 Dan Walsh <dwalsh@redhat.com> 1.11-1
- Upgrade to 1.11
Wed Apr 07 2004 Dan Walsh <dwalsh@redhat.com> 1.10-2
- Add memleaks patch
Wed Apr 07 2004 Dan Walsh <dwalsh@redhat.com> 1.10-1
- Upgrade to latest from NSA and add more man pages
Thu Apr 01 2004 Dan Walsh <dwalsh@redhat.com> 1.9-1
- Update to match NSA
- Cleanup some man pages
Tue Mar 30 2004 Dan Walsh <dwalsh@redhat.com> 1.8-1
- Upgrade to latest from NSA
Thu Mar 25 2004 Dan Walsh <dwalsh@redhat.com> 1.6-6
- Add Russell's Man pages
Thu Mar 25 2004 Dan Walsh <dwalsh@redhat.com> 1.6-5
- Change getenforce to also check is_selinux_enabled
Thu Mar 25 2004 Dan Walsh <dwalsh@redhat.com> 1.6-4
- Add ownership to /usr/include/selinux
2004-09-09 07:42:26 +00:00
cvsdist
e9e2eaa1a2 auto-import changelog data from libselinux-1.6-3.src.rpm
Wed Mar 10 2004 Dan Walsh <dwalsh@redhat.com> 1.6-3
- fix location of file_contexts file.
Wed Mar 10 2004 Dan Walsh <dwalsh@redhat.com> 1.6-2
- Fix matchpathcon to use BUFSIZ
Tue Mar 02 2004 Elliot Lee <sopwith@redhat.com>
- rebuilt
Mon Feb 23 2004 Dan Walsh <dwalsh@redhat.com> 1.4-11
- add matchpathcon
Fri Feb 13 2004 Elliot Lee <sopwith@redhat.com>
- rebuilt
2004-09-09 07:41:46 +00:00
cvsdist
9f53563498 auto-import changelog data from libselinux-1.4-9.src.rpm
Fri Jan 23 2004 Dan Walsh <dwalsh@redhat.com> 1.4-9
- Add rootok patch
Wed Jan 14 2004 Dan Walsh <dwalsh@redhat.com> 1.4-8
- Updated getpeernam patch
Tue Jan 13 2004 Dan Walsh <dwalsh@redhat.com> 1.4-7
- Add getpeernam patch
Thu Dec 18 2003 Dan Walsh <dwalsh@redhat.com> 1.4-6
- Add getpeercon patch
Thu Dec 18 2003 Dan Walsh <dwalsh@redhat.com> 1.4-5
- Put mntpoint patch, because found fix for SysVinit
Wed Dec 17 2003 Dan Walsh <dwalsh@redhat.com> 1.4-4
- Add remove mntpoint patch, because it breaks SysVinit
Wed Dec 17 2003 Dan Walsh <dwalsh@redhat.com> 1.4-3
- Add mntpoint patch for SysVinit
Fri Dec 12 2003 Dan Walsh <dwalsh@redhat.com> 1.4-2
- Add -r -u -t to getcon
Sat Dec 06 2003 Dan Walsh <dwalsh@redhat.com> 1.4-1
- Upgrade to latest from NSA
Mon Oct 27 2003 Dan Walsh <dwalsh@redhat.com> 1.3-2
- Fix x86_64 build
Tue Oct 21 2003 Dan Walsh <dwalsh@redhat.com> 1.3-1
- Latest tarball from NSA.
Tue Oct 21 2003 Dan Walsh <dwalsh@redhat.com> 1.2-9
- Update with latest changes from NSA
Mon Oct 20 2003 Dan Walsh <dwalsh@redhat.com> 1.2-8
- Change location of .so file
Wed Oct 08 2003 Dan Walsh <dwalsh@redhat.com> 1.2-7
- Break out into development library
Wed Oct 08 2003 Dan Walsh <dwalsh@redhat.com> 1.2-6
- Move location of libselinux.so to /lib
Fri Oct 03 2003 Dan Walsh <dwalsh@redhat.com> 1.2-5
- Add selinuxenabled patch
Wed Oct 01 2003 Dan Walsh <dwalsh@redhat.com> 1.2-4
- Update with final NSA 1.2 sources.
Fri Sep 12 2003 Dan Walsh <dwalsh@redhat.com> 1.2-3
- Update with latest from NSA.
Thu Aug 28 2003 Dan Walsh <dwalsh@redhat.com> 1.2-2
- Fix to build on x86_64
Thu Aug 21 2003 Dan Walsh <dwalsh@redhat.com> 1.2-1
- update for version 1.2
Tue May 27 2003 Dan Walsh <dwalsh@redhat.com> 1.0-1
- Initial version
2004-09-09 07:41:25 +00:00