rpms
/
libsemanage
2
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
206 Commits 40 Branches 195 Tags 1.6 MiB
Commit Graph

200 Commits

Author SHA1 Message Date
Daniel J Walsh ade6fffd9e - Update to upstream 
Use sepol_set_expand_consume_base to reduce peak memory usage when using
    semodule
 2008-02-02 21:38:32 +00:00
Daniel J Walsh 283295614d - Update to upstream 
Fix genhomedircon to not override a file context with a homedir context
    from Todd Miller.
 2008-02-01 10:49:29 +00:00
Daniel J Walsh e2b1d219e7 - Update to upstream 
Fix spurious out of memory error reports.
Merged second version of fix for genhomedircon handling from Caleb Case.
 2008-01-29 13:36:49 +00:00
Daniel J Walsh 36d79c42d3 - Update to upstream 
Merged fix for genhomedircon handling of missing HOME_DIR or HOME_ROOT
    templates from Caleb Case.
 2008-01-25 16:20:02 +00:00
Daniel J Walsh 924325dc15 - Stop differentiating on user for homedir labeling 2008-01-22 19:38:14 +00:00
Daniel J Walsh 1427637c48 - Update to upstream 
Fix genhomedircon handling of shells and missing user context template from
    Dan Walsh.
Copy the store path in semanage_select_store from Dan Walsh.
 2007-12-07 01:18:18 +00:00
Daniel J Walsh f026dfbc02 - Fix handling of /etc/shells so genhomedircon will work 2007-12-03 20:55:15 +00:00
Daniel J Walsh 3d2cf39af1 - Fix handling of /etc/shells so genhomedircon will work 2007-12-03 19:22:33 +00:00
Daniel J Walsh e3e8d634bb - Allow semanage_genhomedircon to work with out a USER int homedir.template 2007-11-30 20:08:17 +00:00
Daniel J Walsh 90bffa9795 - Upgrade to latest from NSA 
Call rmdir() rather than remove() on directory removal so that errno isn't
    polluted from Stephen Smalley.
Allow handle_unknown in base to be overridden by semanage.conf from Stephen
    Smalley.
 2007-11-06 18:33:05 +00:00
Daniel J Walsh 58209b633d - Upgrade to latest from NSA 
Call rmdir() rather than remove() on directory removal so that errno isn't
    polluted from Stephen Smalley.
Allow handle_unknown in base to be overridden by semanage.conf from Stephen
    Smalley.
 2007-11-06 18:01:51 +00:00
Daniel J Walsh 2511741eac - Upgrade to latest from NSA 
ustr cleanups from James Antill.
Ensure that /root gets labeled even if using the default context from Dan
    Walsh.
 2007-10-05 17:20:57 +00:00
Daniel J Walsh fbe2b7390b - Upgrade to latest from NSA 
ustr cleanups from James Antill.
Ensure that /root gets labeled even if using the default context from Dan
    Walsh.
 2007-10-05 17:18:12 +00:00
Daniel J Walsh 3ba23c823c - Upgrade to latest from NSA 
Fix ordering of file_contexts.homedirs from Todd Miller and Dan Walsh.
 2007-10-01 16:29:27 +00:00
Daniel J Walsh add9ada6d8 - Upgrade to latest from NSA 
Fix error checking on getpw*_r functions from Todd Miller.
Make genhomedircon skip invalid homedir contexts from Todd Miller.
Set default user and prefix from seusers from Dan Walsh.
Add swigify Makefile target from Dan Walsh.
 2007-09-28 13:53:30 +00:00
Daniel J Walsh 8bb5a230f2 - Upgrade to latest from NSA 
Pass CFLAGS to CC even on link command, per Dennis Gilmore.
Clear errno on non-fatal errors to avoid reporting them upon a later error
    that does not set errno.
Improve reporting of system errors, e.g. full filesystem or read-only
    filesystem from Stephen Smalley.
 2007-09-27 00:20:09 +00:00
Daniel J Walsh 09711868c7 - Fix genhomedircon code to only generate valid context 
- Fixes autorelabel problem
 2007-09-26 20:51:43 +00:00
Daniel J Walsh 422f3b68fd - Upgrade to latest from NSA 
Change to use getpw* function calls to the _r versions from Todd Miller.
 2007-09-13 12:29:42 +00:00
Daniel J Walsh c0c84efd96 - Upgrade to latest from NSA 2007-09-06 02:48:04 +00:00
Daniel J Walsh 8f8294e39e - Upgrade to latest from NSA 2007-09-05 19:01:41 +00:00
Daniel J Walsh cf2b1c22f9 - Upgrade to latest from NSA 
Allow dontaudits to be turned off via semanage interface when updating
    policy
 2007-08-20 23:30:14 +00:00
Daniel J Walsh 6da4db8e6f - Add ability to load a policy without dontaudit rules 
-
 2007-08-11 10:53:39 +00:00
Daniel J Walsh a65d30f4d2 - Rebuild to fix segfault on x86 platforms, swigify on each build 2007-08-11 10:42:54 +00:00
Daniel J Walsh 3068364d58 - Rebuild to fix segfault on x86 platforms, swigify on each build 2007-06-26 09:43:57 +00:00
Daniel J Walsh 65c9f7004a - Rebuild to fix segfault on x86 platforms, swigify on each build 2007-06-26 09:39:27 +00:00
Daniel J Walsh d49d036d30 - Rebuild for rawhide 2007-06-01 14:45:13 +00:00
Daniel J Walsh 212e1b703f - Apply patch to fix dependencies in spec file from Robert Scheck 2007-05-04 17:26:34 +00:00
Daniel J Walsh 3e627b0d72 - Upgrade to latest from NSA 
Fix to libsemanage man patches so whatis will work better from Dan Walsh
 2007-04-26 00:05:03 +00:00
Daniel J Walsh b8748b2834 - Upgrade to latest from NSA 
Merged optimizations from Stephen Smalley.
- do not set all booleans upon commit, only those whose values have changed
- only install the sandbox upon commit if something was rebuilt
 2007-04-25 15:11:21 +00:00
Daniel J Walsh eea9396386 - Add SELinux to Man page Names so man -k will work 2007-03-27 19:48:04 +00:00
Daniel J Walsh c52428e9f1 Merged dbase_file_flush patch from Dan Walsh. This removes any mention of 
specific tools (e.g. semanage) from the comment header of the
    auto-generated files, since there are multiple front-end tools.
 2007-03-13 00:21:38 +00:00
Daniel J Walsh 7fe322b328 - Upgrade to latest from NSA 
Merged Makefile test target patch from Caleb Case.
Merged get_commit_number function rename patch from Caleb Case.
Merged strnlen -> strlen patch from Todd Miller.
 2007-02-20 14:32:39 +00:00
Daniel J Walsh 6456c7a530 - Upgrade to latest from NSA 
Merged python binding fix from Dan Walsh.
Updated version for stable branch.
 2007-02-07 21:38:02 +00:00
Daniel J Walsh 4b215a5b9f - Upgrade to latest from NSA 
Merged python binding fix from Dan Walsh.
Updated version for stable branch.
 2007-02-07 21:31:41 +00:00
Daniel J Walsh 4f442a2b56 - Upgrade to latest from NSA 
Merged patch to optionally reduce disk usage by removing the backup module
    store and linked policy from Karl MacMillan
Merged patch to correctly propagate return values in libsemanage
 2007-01-25 22:48:00 +00:00
Daniel J Walsh b91d944b4b - Upgrade to latest from NSA 
Merged patch to optionally reduce disk usage by removing the backup module
    store and linked policy from Karl MacMillan
Merged patch to correctly propagate return values in libsemanage
 2007-01-09 15:22:05 +00:00
Daniel J Walsh 7ccc8bd470 - Apply Karl MacMillan patch to get proper error codes. 2006-12-22 16:50:50 +00:00
Jeremy Katz bc624cc139 - rebuild against python 2.5 2006-12-07 16:39:43 +00:00
Daniel J Walsh 6429e69e0b - Upgrade to latest from NSA 
Merged patch to compile wit -fPIC instead of -fpic from Manoj Srivastava to
    prevent hitting the global offest table limit. Patch changed to include
    libselinux and libsemanage in addition to libsepol.
 2006-11-28 19:02:17 +00:00
Daniel J Walsh 003cc65998 - Upgrade to latest from NSA 
Updated version for release.
 2006-10-25 02:52:37 +00:00
Daniel J Walsh 37c60b3ffc *** empty log message *** 2006-09-29 15:54:07 +00:00
Daniel J Walsh 73c5b03ea2 *** empty log message *** 2006-09-29 14:44:43 +00:00
Daniel J Walsh 77e41c7ede *** empty log message *** 2006-09-29 14:43:48 +00:00
Daniel J Walsh da9766685c *** empty log message *** 2006-08-31 11:41:18 +00:00
Daniel J Walsh b1567cf808 *** empty log message *** 2006-08-23 17:59:58 +00:00
Daniel J Walsh ab73a7a815 *** empty log message *** 2006-08-12 12:26:53 +00:00
Daniel J Walsh f1afa1b22a *** empty log message *** 2006-08-12 11:56:13 +00:00
Daniel J Walsh a6f3313832 *** empty log message *** 2006-08-12 10:59:35 +00:00
Daniel J Walsh df4486c793 - Change other updates to be non-fatal 2006-08-11 03:20:13 +00:00
Daniel J Walsh 6ba7395041 - Change netfilter stuff to be non-fatal so update can proceed. 2006-08-09 19:08:44 +00:00
Daniel J Walsh 1b2c2ff0fd - Upgrade to latest from NSA 
Merged netfilter contexts support from Chris PeBenito.
 2006-08-06 00:00:19 +00:00
Daniel J Walsh c102f8109e - Upgrade to latest from NSA 
Merged netfilter contexts support from Chris PeBenito.
 2006-08-04 22:56:25 +00:00
Daniel J Walsh af95fdb790 - Rebuild for new gcc 2006-07-17 13:12:48 +00:00
Daniel J Walsh b4bff1fcc6 - Upgrade to latest from NSA 
Merged support for read operations on read-only fs from Caleb Case (Tresys
    Technology).
 2006-07-12 02:53:48 +00:00
Daniel J Walsh 43f2cfdf4d - Upgrade to latest from NSA 
Lindent.
Merged setfiles location check patch from Dan Walsh.
 2006-07-07 11:08:01 +00:00
Daniel J Walsh 1c63c08c2f - Upgrade to latest from NSA 
dbase_file_cache: deref of uninit data on error path. dbase_policydb_cache:
    clear fp to avoid double fclose semanage_fc_sort: destroy temp on error
    paths
 2006-06-16 19:14:07 +00:00
Daniel J Walsh 64aa562bf6 - Handle setfiles being in /sbin or /usr/sbin 2006-06-16 17:56:42 +00:00
Daniel J Walsh 770201a9dd - Handle setfiles being in /sbin or /usr/sbin 2006-06-16 17:53:27 +00:00
Daniel J Walsh 786f3e5787 - Handle setfiles being in /sbin or /usr/sbin 2006-06-16 17:38:35 +00:00
Daniel J Walsh 25b23d0cd3 - Upgrade to latest from NSA 
[setfiles] path = /path/to/setfiles args = -q -c $@ $< [end]
 2006-06-06 18:50:33 +00:00
Daniel J Walsh 8f1e8ed18d - Spec file cleanup from n0dalus+redhat@gmail.com 2006-05-22 13:34:46 +00:00
Daniel J Walsh ce7274d07b - Upgrade to latest from NSA 
Merged fix warnings patch from Karl MacMillan.
 2006-05-08 18:34:45 +00:00
Daniel J Walsh 5b53b9a393 - Upgrade to latest from NSA 
Merged fix warnings patch from Karl MacMillan.
 2006-05-08 18:16:04 +00:00
Daniel J Walsh 96b801b260 - Upgrade to latest from NSA 
Merged updated file context sorting patch from Christopher Ashworth, with
    bug fix for escaped character flag.
Merged file context sorting code from Christopher Ashworth (Tresys
    Technology), based on fc_sort.c code in refpolicy.
Merged python binding t_output_helper removal patch from Dan Walsh.
Regenerated swig files.
 2006-04-14 15:14:48 +00:00
Daniel J Walsh 9b0bb205bf - Upgrade to latest from NSA 
Merged file context sorting code from Christopher Ashworth (Tresys
    Technology), based on fc_sort.c code in refpolicy.
Merged python binding t_output_helper removal patch from Dan Walsh.
Regenerated swig files.
 2006-04-14 11:37:57 +00:00
Daniel J Walsh 3db0ea01ca - Fix leaky descriptor 2006-04-03 22:19:54 +00:00
Daniel J Walsh 1b2534e1d4 - Fix leaky descriptor 2006-04-03 22:15:37 +00:00
Daniel J Walsh e970cd9667 - Fix leaky descriptor 2006-04-03 21:51:23 +00:00
Daniel J Walsh 07a3ad638e - Fix leaky descriptor 2006-04-03 21:26:44 +00:00
Daniel J Walsh a247f456ee - Fix leaky descriptor 2006-04-03 20:49:58 +00:00
Daniel J Walsh 6b31c1bb12 - Upgrade to latest from NSA 
Merged Makefile PYLIBVER definition patch from Dan Walsh.
Merged man page reorganization from Ivan Gyurdiev.
 2006-03-21 15:45:58 +00:00
Daniel J Walsh 60ab106466 - Upgrade to latest from NSA 
Merged Makefile PYLIBVER definition patch from Dan Walsh.
Merged man page reorganization from Ivan Gyurdiev.
 2006-03-21 15:45:45 +00:00
Daniel J Walsh aa0c632103 - Make work on RHEL4 
- Upgrade to latest from NSA
Merged abort early on merge errors patch from Ivan Gyurdiev.
Cleaned up error handling in semanage_split_fc based on a patch by Serge
    Hallyn (IBM) and suggestions by Ivan Gyurdiev.
Merged MLS handling fixes from Ivan Gyurdiev.
 2006-03-17 20:25:31 +00:00
Daniel J Walsh 5a4115f50c - Upgrade to latest from NSA 
Merged bug fix for fcontext validate handler from Ivan Gyurdiev.
Merged base_merge_components changes from Ivan Gyurdiev.
 2006-02-17 20:00:24 +00:00
Daniel J Walsh 95d8014c0f - Upgrade to latest from NSA 
Merged paths array patch from Ivan Gyurdiev.
Merged bug fix patch from Ivan Gyurdiev.
Merged improve bindings patch from Ivan Gyurdiev.
Merged use PyList patch from Ivan Gyurdiev.
Merged memory leak fix patch from Ivan Gyurdiev.
Merged nodecon support patch from Ivan Gyurdiev.
Merged cleanups patch from Ivan Gyurdiev.
Merged split swig patch from Ivan Gyurdiev.
 2006-02-16 18:44:02 +00:00
Daniel J Walsh 5cdd750209 - Upgrade to latest from NSA 
Merged optionals in base patch from Joshua Brindle.
Merged treat seusers/users_extra as optional sections patch from Ivan
    Gyurdiev.
Merged parse_optional fixes from Ivan Gyurdiev.
 2006-02-13 19:31:17 +00:00
Jesse Keating bdc5c5031f bump for bug in double-long on ppc(64) 2006-02-11 04:12:41 +00:00
Daniel J Walsh 437a1672f8 - Fix handling of seusers and users_map file 2006-02-10 16:42:07 +00:00
Daniel J Walsh b40694835e - Upgrade to latest from NSA 
Merged seuser/user_extra support patch from Joshua Brindle.
Merged remote system dbase patch from Ivan Gyurdiev.
 2006-02-07 15:30:09 +00:00
Jesse Keating 7e12efe662 bump for new gcc/glibc 2006-02-07 12:43:51 +00:00
Daniel J Walsh c77fc837ef *** empty log message *** 2006-02-02 17:11:07 +00:00
Daniel J Walsh 9d3d831b72 *** empty log message *** 2006-01-31 00:02:55 +00:00
Daniel J Walsh 2d7ec48909 *** empty log message *** 2006-01-28 01:38:10 +00:00
Daniel J Walsh 659f45dbf4 *** empty log message *** 2006-01-20 20:28:52 +00:00
Daniel J Walsh 42ed049e66 *** empty log message *** 2006-01-18 16:29:44 +00:00
Daniel J Walsh cef3ae1b81 *** empty log message *** 2006-01-14 04:52:47 +00:00
Daniel J Walsh cde1f77237 *** empty log message *** 2006-01-13 22:36:39 +00:00
Daniel J Walsh c3f6b70d94 *** empty log message *** 2006-01-13 22:31:44 +00:00
Daniel J Walsh d70e17491c *** empty log message *** 2006-01-06 16:07:00 +00:00
Daniel J Walsh f12cd09ff8 *** empty log message *** 2006-01-05 19:52:36 +00:00
Daniel J Walsh eddd487028 - Upgrade to latest from NSA 
Clarified error messages from parse_module_headers and parse_base_headers
    for base/module mismatches.
Merged string and file optimization patch from Russell Coker.
Merged swig header reordering patch from Ivan Gyurdiev.
Merged toggle modify on add patch from Ivan Gyurdiev.
Merged ports parser bugfix patch from Ivan Gyurdiev.
Merged fcontext swig patch from Ivan Gyurdiev.
Merged remove add/modify/delete for active booleans patch from Ivan
    Gyurdiev.
Merged man pages for dbase functions patch from Ivan Gyurdiev.
Merged pywrap tests patch from Ivan Gyurdiev.
 2006-01-05 16:21:25 +00:00
Daniel J Walsh 9a5688a1ca - Upgrade to latest from NSA 
Clarified error messages from parse_module_headers and parse_base_headers
    for base/module mismatches.
Merged string and file optimization patch from Russell Coker.
Merged swig header reordering patch from Ivan Gyurdiev.
Merged toggle modify on add patch from Ivan Gyurdiev.
Merged ports parser bugfix patch from Ivan Gyurdiev.
Merged fcontext swig patch from Ivan Gyurdiev.
Merged remove add/modify/delete for active booleans patch from Ivan
    Gyurdiev.
Merged man pages for dbase functions patch from Ivan Gyurdiev.
Merged pywrap tests patch from Ivan Gyurdiev.
 2006-01-05 16:15:55 +00:00
Daniel J Walsh bcfb02bfc0 - Upgrade to latest from NSA 
Clarified error messages from parse_module_headers and parse_base_headers
    for base/module mismatches.
Merged string and file optimization patch from Russell Coker.
Merged swig header reordering patch from Ivan Gyurdiev.
Merged toggle modify on add patch from Ivan Gyurdiev.
Merged ports parser bugfix patch from Ivan Gyurdiev.
Merged fcontext swig patch from Ivan Gyurdiev.
Merged remove add/modify/delete for active booleans patch from Ivan
    Gyurdiev.
Merged man pages for dbase functions patch from Ivan Gyurdiev.
Merged pywrap tests patch from Ivan Gyurdiev.
 2006-01-05 16:10:57 +00:00
Daniel J Walsh 5361ff6e72 - Upgrade to latest from NSA 
- separate file rw code from linked list
- annotate objects
- fold together internal headers
- support ordering of records in compare function
- add active dbase backend, active booleans
- return commit numbers for ro database calls
- use modified flags to skip rebuild whenever possible
- enable port interfaces
- update swig interfaces and typemaps
- add an API for file_contexts.local and file_contexts
- flip the traversal order in iterate/list
- reorganize sandbox_expand
- add seusers MLS validation
- improve dbase spec/documentation
- clone record on set/add/modify
 2006-01-04 18:39:06 +00:00
Daniel J Walsh 112859cb56 - Upgrade to latest from NSA 
- separate file rw code from linked list
- annotate objects
- fold together internal headers
- support ordering of records in compare function
- add active dbase backend, active booleans
- return commit numbers for ro database calls
- use modified flags to skip rebuild whenever possible
- enable port interfaces
- update swig interfaces and typemaps
- add an API for file_contexts.local and file_contexts
- flip the traversal order in iterate/list
- reorganize sandbox_expand
- add seusers MLS validation
- improve dbase spec/documentation
- clone record on set/add/modify
 2006-01-04 18:13:08 +00:00
Daniel J Walsh 23614f87e1 - Add Ivans patch to turn on ports 2006-01-02 12:56:28 +00:00
Daniel J Walsh a151f78a70 - Remove patch since upstream does the right thing 2005-12-14 21:32:33 +00:00
Daniel J Walsh c2b1e26fcc - Upgrade to latest from NSA 
Merged further header cleanups from Ivan Gyurdiev.
Merged toggle modified flag in policydb_modify, fix memory leak in
    clear_obsolete, polymorphism vs headers fix, and include guards for
    internal headers patches from Ivan Gyurdiev.
 2005-12-14 19:51:34 +00:00
Daniel J Walsh 9993e32e21 - Upgrade to latest from NSA 
Merged toggle modified flag in policydb_modify, fix memory leak in
    clear_obsolete, polymorphism vs headers fix, and include guards for
    internal headers patches from Ivan Gyurdiev.
 2005-12-13 16:22:20 +00:00
Daniel J Walsh 2b5b2a62e8 - Upgrade to latest from NSA 
Added file-mode= setting to semanage.conf, default to 0644. Changed
    semanage_copy_file and callers to use this mode when installing policy
    files to runtime locations.
 2005-12-13 04:54:54 +00:00