rpms/libsemanage
3
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
245 Commits 40 Branches 195 Tags 1.6 MiB
70de4204ca
Commit Graph

235 Commits

Author SHA1 Message Date
Daniel J Walsh
b05566938b - Update to upstream 
Change semodule upgrade behavior to install even if the module is not
    present from Dan Walsh.
Make genhomedircon trim excess '/' from homedirs from Dan Walsh.
 2009-09-17 13:02:59 +00:00
Daniel J Walsh
5aeb590264 - Update to upstream 
Fix persistent dontaudit support to rebuild policy if the dontaudit state
    is changed from Chad Sellers.
- Move load_policy to /sbin
 2009-09-09 17:57:13 +00:00
Daniel J Walsh
f6a1eaa2e3 - Add enable/disable modules 2009-08-28 18:03:05 +00:00
Daniel J Walsh
7313e2e746 - Make sure /root is not used in genhomedircon 2009-08-26 19:06:23 +00:00
Daniel J Walsh
168ea7cab1 Revert hard linking of files between tmp/active/previous. 
Enable configuration of bzip behavior from Stephen Smalley.
    bzip-blocksize=0 to disable compression and decompression support.
    bzip-blocksize=1..9 to set the blocksize for compression.
    bzip-small=true to reduce memory usage for decompression.
 2009-08-05 19:21:58 +00:00
Jesse Keating
6eb64237b0 - Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild 2009-07-25 08:35:48 +00:00
Daniel J Walsh
1639efd7cd - Put check for /root back into genhomedircon 2009-07-10 18:46:52 +00:00
Daniel J Walsh
f4a5c19066 - Update to upstream 2009-07-07 21:09:15 +00:00
Daniel J Walsh
3652b31671 - Update to upstream 
Ruby bindings from David Quigley.
 2009-06-08 19:05:19 +00:00
Daniel J Walsh
713ea522a4 - Return error on invalid file 2009-04-17 15:25:00 +00:00
Daniel J Walsh
9b8c9f0229 - Fix typo 2009-03-11 19:38:20 +00:00
Jesse Keating
13cd6ad189 - Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild 2009-02-25 18:01:54 +00:00
Daniel J Walsh
dd8fa006e0 - Fix link to only link on sandbox 2009-01-15 20:56:45 +00:00
Daniel J Walsh
cee66038e2 - Update to upstream 
Policy module compression (bzip) support from Dan Walsh.
Hard link files between tmp/active/previous from Dan Walsh.
 2009-01-13 13:14:25 +00:00
Daniel J Walsh
25dcff4b7d - Fix up patch to get it upstreamed 2009-01-12 15:55:47 +00:00
Ignacio Vazquez-Abrams
26c90567dd Rebuild for Python 2.6 2008-12-04 21:09:08 +00:00
Daniel J Walsh
81984aa5a2 Add semanage_mls_enabled() interface from Stephen Smalley. 2008-12-04 20:19:01 +00:00
Daniel J Walsh
1990483943 Add semanage_mls_enabled() interface from Stephen Smalley. 2008-12-04 19:39:35 +00:00
Ignacio Vazquez-Abrams
ee2fde0d11 Rebuild for Python 2.6 2008-11-29 16:48:06 +00:00
Daniel J Walsh
ab25b0bd42 - Update to upstream 
Add USER to lines to homedir_template context file from Chris PeBenito.
 2008-11-11 21:16:07 +00:00
Daniel J Walsh
43a16b6241 - Add compression support 2008-11-07 14:23:16 +00:00
Daniel J Walsh
688b1ed5d1 - Add compression support 2008-11-07 14:12:03 +00:00
Daniel J Walsh
be978502a0 - Update to upstream 
allow fcontext and seuser changes without rebuilding the policy from Dan
    Walsh
 2008-09-15 16:24:31 +00:00
Daniel J Walsh
ead711e339 - Additional fixes for Don't rebuild on fcontext or seuser modifications 2008-09-10 14:37:31 +00:00
Daniel J Walsh
dd1def2551 - Don't rebuild on fcontext or seuser modifications 2008-08-15 16:59:10 +00:00
Daniel J Walsh
5142c61edd - Don't rebuild on fcontext or seuser modifications 2008-08-14 20:17:19 +00:00
Daniel J Walsh
8bffda7314 - Update to upstream 
Modify genhomedircon to skip %groupname entries. Ultimately we need to
    expand them to the list of users to support per-role homedir labeling
    when using the %groupname syntax.
 2008-08-05 14:29:44 +00:00
Daniel J Walsh
feb8552515 - Update to upstream 
Fix bug in genhomedircon fcontext matches logic from Dan Walsh. Strip any
    trailing slash before appending /*$.
 2008-07-29 13:25:12 +00:00
Daniel J Walsh
e69414a046 - Another fix for genhomedircon 2008-07-17 18:35:34 +00:00
Tom Callaway
3296a8cd7e fix license tag 2008-05-28 21:43:40 +00:00
Daniel J Walsh
272f92ab1c - Update to upstream 
Do not call genhomedircon if the policy was not rebuilt from Stephen
    Smalley. Fixes semanage boolean -D seg fault (bug 441379).
 2008-05-06 21:38:01 +00:00
Daniel J Walsh
084654f4e3 - Update to upstream 
make swigify
 2008-02-26 13:16:43 +00:00
Daniel J Walsh
ac914e44de - Update to upstream 
Use vfork rather than fork for libsemanage helpers to reduce memory
    overhead as suggested by Todd Miller.
 2008-02-05 20:26:58 +00:00
Daniel J Walsh
811753b1b0 - Update to upstream 
Free policydb before fork from Joshua Brindle.
Drop the base module immediately after expanding to permit memory re-use
    from Stephen Smalley.
 2008-02-04 17:25:53 +00:00
Daniel J Walsh
448d3446cf - Update to upstream 
Use sepol_set_expand_consume_base to reduce peak memory usage when using
    semodule
 2008-02-02 21:47:57 +00:00
Daniel J Walsh
ade6fffd9e - Update to upstream 
Use sepol_set_expand_consume_base to reduce peak memory usage when using
    semodule
 2008-02-02 21:38:32 +00:00
Daniel J Walsh
283295614d - Update to upstream 
Fix genhomedircon to not override a file context with a homedir context
    from Todd Miller.
 2008-02-01 10:49:29 +00:00
Daniel J Walsh
e2b1d219e7 - Update to upstream 
Fix spurious out of memory error reports.
Merged second version of fix for genhomedircon handling from Caleb Case.
 2008-01-29 13:36:49 +00:00
Daniel J Walsh
36d79c42d3 - Update to upstream 
Merged fix for genhomedircon handling of missing HOME_DIR or HOME_ROOT
    templates from Caleb Case.
 2008-01-25 16:20:02 +00:00
Daniel J Walsh
924325dc15 - Stop differentiating on user for homedir labeling 2008-01-22 19:38:14 +00:00
Daniel J Walsh
1427637c48 - Update to upstream 
Fix genhomedircon handling of shells and missing user context template from
    Dan Walsh.
Copy the store path in semanage_select_store from Dan Walsh.
 2007-12-07 01:18:18 +00:00
Daniel J Walsh
f026dfbc02 - Fix handling of /etc/shells so genhomedircon will work 2007-12-03 20:55:15 +00:00
Daniel J Walsh
3d2cf39af1 - Fix handling of /etc/shells so genhomedircon will work 2007-12-03 19:22:33 +00:00
Daniel J Walsh
e3e8d634bb - Allow semanage_genhomedircon to work with out a USER int homedir.template 2007-11-30 20:08:17 +00:00
Daniel J Walsh
90bffa9795 - Upgrade to latest from NSA 
Call rmdir() rather than remove() on directory removal so that errno isn't
    polluted from Stephen Smalley.
Allow handle_unknown in base to be overridden by semanage.conf from Stephen
    Smalley.
 2007-11-06 18:33:05 +00:00
Daniel J Walsh
58209b633d - Upgrade to latest from NSA 
Call rmdir() rather than remove() on directory removal so that errno isn't
    polluted from Stephen Smalley.
Allow handle_unknown in base to be overridden by semanage.conf from Stephen
    Smalley.
 2007-11-06 18:01:51 +00:00
Daniel J Walsh
2511741eac - Upgrade to latest from NSA 
ustr cleanups from James Antill.
Ensure that /root gets labeled even if using the default context from Dan
    Walsh.
 2007-10-05 17:20:57 +00:00
Daniel J Walsh
fbe2b7390b - Upgrade to latest from NSA 
ustr cleanups from James Antill.
Ensure that /root gets labeled even if using the default context from Dan
    Walsh.
 2007-10-05 17:18:12 +00:00
Daniel J Walsh
3ba23c823c - Upgrade to latest from NSA 
Fix ordering of file_contexts.homedirs from Todd Miller and Dan Walsh.
 2007-10-01 16:29:27 +00:00
Daniel J Walsh
add9ada6d8 - Upgrade to latest from NSA 
Fix error checking on getpw*_r functions from Todd Miller.
Make genhomedircon skip invalid homedir contexts from Todd Miller.
Set default user and prefix from seusers from Dan Walsh.
Add swigify Makefile target from Dan Walsh.
 2007-09-28 13:53:30 +00:00
Daniel J Walsh
8bb5a230f2 - Upgrade to latest from NSA 
Pass CFLAGS to CC even on link command, per Dennis Gilmore.
Clear errno on non-fatal errors to avoid reporting them upon a later error
    that does not set errno.
Improve reporting of system errors, e.g. full filesystem or read-only
    filesystem from Stephen Smalley.
 2007-09-27 00:20:09 +00:00
Daniel J Walsh
09711868c7 - Fix genhomedircon code to only generate valid context 
- Fixes autorelabel problem
 2007-09-26 20:51:43 +00:00
Daniel J Walsh
422f3b68fd - Upgrade to latest from NSA 
Change to use getpw* function calls to the _r versions from Todd Miller.
 2007-09-13 12:29:42 +00:00
Daniel J Walsh
c0c84efd96 - Upgrade to latest from NSA 2007-09-06 02:48:04 +00:00
Daniel J Walsh
8f8294e39e - Upgrade to latest from NSA 2007-09-05 19:01:41 +00:00
Daniel J Walsh
cf2b1c22f9 - Upgrade to latest from NSA 
Allow dontaudits to be turned off via semanage interface when updating
    policy
 2007-08-20 23:30:14 +00:00
Daniel J Walsh
6da4db8e6f - Add ability to load a policy without dontaudit rules 
-
 2007-08-11 10:53:39 +00:00
Daniel J Walsh
a65d30f4d2 - Rebuild to fix segfault on x86 platforms, swigify on each build 2007-08-11 10:42:54 +00:00
Daniel J Walsh
3068364d58 - Rebuild to fix segfault on x86 platforms, swigify on each build 2007-06-26 09:43:57 +00:00
Daniel J Walsh
65c9f7004a - Rebuild to fix segfault on x86 platforms, swigify on each build 2007-06-26 09:39:27 +00:00
Daniel J Walsh
d49d036d30 - Rebuild for rawhide 2007-06-01 14:45:13 +00:00
Daniel J Walsh
212e1b703f - Apply patch to fix dependencies in spec file from Robert Scheck 2007-05-04 17:26:34 +00:00
Daniel J Walsh
3e627b0d72 - Upgrade to latest from NSA 
Fix to libsemanage man patches so whatis will work better from Dan Walsh
 2007-04-26 00:05:03 +00:00
Daniel J Walsh
b8748b2834 - Upgrade to latest from NSA 
Merged optimizations from Stephen Smalley.
- do not set all booleans upon commit, only those whose values have changed
- only install the sandbox upon commit if something was rebuilt
 2007-04-25 15:11:21 +00:00
Daniel J Walsh
eea9396386 - Add SELinux to Man page Names so man -k will work 2007-03-27 19:48:04 +00:00
Daniel J Walsh
c52428e9f1 Merged dbase_file_flush patch from Dan Walsh. This removes any mention of 
specific tools (e.g. semanage) from the comment header of the
    auto-generated files, since there are multiple front-end tools.
 2007-03-13 00:21:38 +00:00
Daniel J Walsh
7fe322b328 - Upgrade to latest from NSA 
Merged Makefile test target patch from Caleb Case.
Merged get_commit_number function rename patch from Caleb Case.
Merged strnlen -> strlen patch from Todd Miller.
 2007-02-20 14:32:39 +00:00
Daniel J Walsh
6456c7a530 - Upgrade to latest from NSA 
Merged python binding fix from Dan Walsh.
Updated version for stable branch.
 2007-02-07 21:38:02 +00:00
Daniel J Walsh
4b215a5b9f - Upgrade to latest from NSA 
Merged python binding fix from Dan Walsh.
Updated version for stable branch.
 2007-02-07 21:31:41 +00:00
Daniel J Walsh
4f442a2b56 - Upgrade to latest from NSA 
Merged patch to optionally reduce disk usage by removing the backup module
    store and linked policy from Karl MacMillan
Merged patch to correctly propagate return values in libsemanage
 2007-01-25 22:48:00 +00:00
Daniel J Walsh
b91d944b4b - Upgrade to latest from NSA 
Merged patch to optionally reduce disk usage by removing the backup module
    store and linked policy from Karl MacMillan
Merged patch to correctly propagate return values in libsemanage
 2007-01-09 15:22:05 +00:00
Daniel J Walsh
7ccc8bd470 - Apply Karl MacMillan patch to get proper error codes. 2006-12-22 16:50:50 +00:00
Jeremy Katz
bc624cc139 - rebuild against python 2.5 2006-12-07 16:39:43 +00:00
Daniel J Walsh
6429e69e0b - Upgrade to latest from NSA 
Merged patch to compile wit -fPIC instead of -fpic from Manoj Srivastava to
    prevent hitting the global offest table limit. Patch changed to include
    libselinux and libsemanage in addition to libsepol.
 2006-11-28 19:02:17 +00:00
Daniel J Walsh
003cc65998 - Upgrade to latest from NSA 
Updated version for release.
 2006-10-25 02:52:37 +00:00
Daniel J Walsh
37c60b3ffc *** empty log message *** 2006-09-29 15:54:07 +00:00
Daniel J Walsh
73c5b03ea2 *** empty log message *** 2006-09-29 14:44:43 +00:00
Daniel J Walsh
77e41c7ede *** empty log message *** 2006-09-29 14:43:48 +00:00
Daniel J Walsh
da9766685c *** empty log message *** 2006-08-31 11:41:18 +00:00
Daniel J Walsh
b1567cf808 *** empty log message *** 2006-08-23 17:59:58 +00:00
Daniel J Walsh
ab73a7a815 *** empty log message *** 2006-08-12 12:26:53 +00:00
Daniel J Walsh
f1afa1b22a *** empty log message *** 2006-08-12 11:56:13 +00:00
Daniel J Walsh
a6f3313832 *** empty log message *** 2006-08-12 10:59:35 +00:00
Daniel J Walsh
df4486c793 - Change other updates to be non-fatal 2006-08-11 03:20:13 +00:00
Daniel J Walsh
6ba7395041 - Change netfilter stuff to be non-fatal so update can proceed. 2006-08-09 19:08:44 +00:00
Daniel J Walsh
1b2c2ff0fd - Upgrade to latest from NSA 
Merged netfilter contexts support from Chris PeBenito.
 2006-08-06 00:00:19 +00:00
Daniel J Walsh
c102f8109e - Upgrade to latest from NSA 
Merged netfilter contexts support from Chris PeBenito.
 2006-08-04 22:56:25 +00:00
Daniel J Walsh
af95fdb790 - Rebuild for new gcc 2006-07-17 13:12:48 +00:00
Daniel J Walsh
b4bff1fcc6 - Upgrade to latest from NSA 
Merged support for read operations on read-only fs from Caleb Case (Tresys
    Technology).
 2006-07-12 02:53:48 +00:00
Daniel J Walsh
43f2cfdf4d - Upgrade to latest from NSA 
Lindent.
Merged setfiles location check patch from Dan Walsh.
 2006-07-07 11:08:01 +00:00
Daniel J Walsh
1c63c08c2f - Upgrade to latest from NSA 
dbase_file_cache: deref of uninit data on error path. dbase_policydb_cache:
    clear fp to avoid double fclose semanage_fc_sort: destroy temp on error
    paths
 2006-06-16 19:14:07 +00:00
Daniel J Walsh
64aa562bf6 - Handle setfiles being in /sbin or /usr/sbin 2006-06-16 17:56:42 +00:00
Daniel J Walsh
770201a9dd - Handle setfiles being in /sbin or /usr/sbin 2006-06-16 17:53:27 +00:00
Daniel J Walsh
786f3e5787 - Handle setfiles being in /sbin or /usr/sbin 2006-06-16 17:38:35 +00:00
Daniel J Walsh
25b23d0cd3 - Upgrade to latest from NSA 
[setfiles] path = /path/to/setfiles args = -q -c $@ $< [end]
 2006-06-06 18:50:33 +00:00
Daniel J Walsh
8f1e8ed18d - Spec file cleanup from n0dalus+redhat@gmail.com 2006-05-22 13:34:46 +00:00
Daniel J Walsh
ce7274d07b - Upgrade to latest from NSA 
Merged fix warnings patch from Karl MacMillan.
 2006-05-08 18:34:45 +00:00
Daniel J Walsh
5b53b9a393 - Upgrade to latest from NSA 
Merged fix warnings patch from Karl MacMillan.
 2006-05-08 18:16:04 +00:00
Daniel J Walsh
96b801b260 - Upgrade to latest from NSA 
Merged updated file context sorting patch from Christopher Ashworth, with
    bug fix for escaped character flag.
Merged file context sorting code from Christopher Ashworth (Tresys
    Technology), based on fc_sort.c code in refpolicy.
Merged python binding t_output_helper removal patch from Dan Walsh.
Regenerated swig files.
 2006-04-14 15:14:48 +00:00
Daniel J Walsh
9b0bb205bf - Upgrade to latest from NSA 
Merged file context sorting code from Christopher Ashworth (Tresys
    Technology), based on fc_sort.c code in refpolicy.
Merged python binding t_output_helper removal patch from Dan Walsh.
Regenerated swig files.
 2006-04-14 11:37:57 +00:00