Commit Graph

269 Commits

Author SHA1 Message Date
Dan Walsh
d76cbbc290 Update to upstream
* Avoid duplicate list entries from Dan Walsh.
	* Add audit support to libsemanage from Dan Walsh.
	* Remove policy.kern and replace with symlink from Dan Walsh.
	* Apply a MAX_UID check for genhomedircon from Laurent Bigonville.
	* Fix man pages from Laurent Bigonville.
2013-10-31 09:31:40 -04:00
Dan Walsh
ab84ace2a1 Cleanup handling of missing mls_range to fix problems with useradd -Z
- Fix auditing of login record changes, roles were not working correctly.
Resolves: #952237
2013-10-16 14:34:13 -04:00
Dan Walsh
8dcd430104 Fix errors found by coverity 2013-10-04 14:55:58 -04:00
Dan Walsh
2a9c9b49a7 Do not fail on missing SELinux User Record when adding login record 2013-09-25 12:46:19 -04:00
Dan Walsh
a7e3a97407 Add msg to audit records 2013-09-23 15:11:52 -04:00
Dan Walsh
4bccd198db Do not write error message to screen when looking for previous record for auditing.
- Add mls_range from user record if the MLS range is not specified by the seuser add record.
- Error out if seuser or mls range is not specified when adding user records
2013-09-23 14:30:33 -04:00
Dan Walsh
a70e6a436c Create symlink from policy.kern to active kernel. 2013-09-09 09:34:32 -04:00
Dan Walsh
a7785d28a7 Move handling of role audit records into the library
- Patch stops semanage from removing user record while in use
2013-07-26 17:49:13 -04:00
Dan Walsh
514a8aa4c0 Move handling of role audit records into the library
- Patch stops semanage from removing user record while in use
2013-07-26 17:39:40 -04:00
Dan Walsh
d0c5aefe7f Remove dependance on selinux-policy, /etc/selinux should be owned by libsemanage, and selinux-policy can require it. 2013-07-09 11:12:34 -04:00
Dan Walsh
3d5abbea35 Allways build python3 version 2013-06-28 06:29:56 -04:00
Dan Walsh
4c4dc161a0 - Fix test suite to build 2013-06-28 06:29:06 -04:00
Dan Walsh
13bc72f76a - Fix test suite to build 2013-04-22 10:29:48 -04:00
Dan Walsh
db579f949e Fix test suite to build 2013-04-11 11:37:19 -04:00
Dan Walsh
518c1aa0ae Revert some changes which are causing the wrong policy version file to be created 2013-02-14 07:58:54 -05:00
Dan Walsh
1021fcbc45 Update to upstream
* Add sefcontext_compile to compile regex everytime policy is rebuilt
	* Cleanup/fix enable/disable/remove module.
	* redo genhomedircon minuid
	* fixes from coverity
	* semanage_store: do not leak memory in semanage_exec_prog
	* genhomedircon: remove useless conditional in get_home_dirs
	* genhomedircon: double free in get_home_dirs
	* fcontext_record: do not leak on error in semanage_fcontext_key_create
	* genhomedircon: do not leak on failure in write_gen_home_dir_context
	* semanage_store: do not leak fd
	* genhomedircon: do not leak shells list
	* semanage_store: do not leak on strdup failure
	* semanage_store: rewrite for readability
2013-02-07 13:41:45 -05:00
Dan Walsh
4f6c727597 Add selinux-policy as a requires to get /etc/selinux owned 2013-01-16 09:56:17 -05:00
Dan Walsh
971fc3e245 Add /etc/selinux to payload for case where selinux-policy is not installed 2013-01-16 09:37:32 -05:00
Dan Walsh
15a3a08fb3 Update to latest patches from eparis/Upstream
-    libsemanage: fixes from coverity
-    libsemange: redo genhomedircon minuid
2013-01-05 11:31:53 -05:00
Dan Walsh
f0b6adc46c Fix handling of missing semanage permissive -d foo, not failing correctly
- Previous to this fix the first module beginning with foo would get deleted.
2012-11-21 14:30:13 -05:00
rhatdan
1264a1fe67 Update to upstream
* libsemanage: do not set soname needlessly
	* libsemanage: remove PYTHONLIBDIR and ruby equivalent
	* do boolean name substitution
	* Fix segfault for building standard policies.
2012-09-15 07:49:52 -04:00
rhatdan
70de4204ca Update to upstream
* libsemanage: do not set soname needlessly
	* libsemanage: remove PYTHONLIBDIR and ruby equivalent
	* do boolean name substitution
	* Fix segfault for building standard policies.
2012-09-15 07:48:40 -04:00
David Malcolm
bf4cea6a73 rebuild for https://fedoraproject.org/wiki/Features/Python_3.3 2012-08-03 21:26:52 -04:00
David Malcolm
bc9fb3a226 2.1.8-5: remove rhel logic from with_python3 conditional 2012-08-01 16:35:50 -04:00
Dennis Gilmore
644f7cae90 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild 2012-07-19 16:09:51 -05:00
Dan Walsh
5f72978380 Attempt to allocate memory for selinux_binary_policy_path and free memory
- allocated by asprintf.
2012-07-13 16:37:22 -04:00
Dan Walsh
ea5e4bfdc0 Revert Eric Paris Patch for binary_policy_path 2012-07-13 14:30:26 -04:00
Dan Walsh
f21a19ce73 Fix asprintf within an asprintf call 2012-07-12 17:47:17 -04:00
Dan Walsh
114463ed84 Update to upstream
* remove build warning when build swig c files
	* additional makefile support for rubywrap
	* ignore 80 column limit for readability
	* semanage_store: fix snprintf length argument by using asprintf
	* Use default semanage.conf as a fallback
	* use after free in python bindings
2012-07-04 07:34:56 -04:00
Dan Walsh
340a7403e4 Apply patch from Sven Vermeulen to fix problem with python3 bindings. 2012-05-29 11:17:02 -04:00
Dan Walsh
3f1912d3f6 Update to upstream
* Alternate path for semanage.conf
	* do not link against libpython, this is considered bad in Debian
	* Allow to build for several ruby version
	* fallback-user-level
2012-03-29 15:30:15 -04:00
Dan Walsh
72a84c3f42 Update to upstream
* Alternate path for semanage.conf
	* do not link against libpython, this is considered bad in Debian
	* Allow to build for several ruby version
	* fallback-user-level
2012-03-29 15:28:29 -04:00
Dennis Gilmore
eab46a4071 - Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild 2012-01-13 02:24:26 -06:00
Dan Walsh
6bcdc7fca5 Add patch form Xin Ouyang to make library use private semanage.conf 2012-01-06 09:19:58 -05:00
Dan Walsh
99d9fa911a Update to upstream
* add ignoredirs config for genhomedircon
	* Fallback_user_level can be NULL if you are not using MLS
2011-12-21 18:09:42 +00:00
Dan Walsh
38c21bc8d2 Update to upstream 2011-12-21 18:04:15 +00:00
Dan Walsh
fccf088a91 Rebuild with latest libsepol 2011-12-16 06:22:37 -05:00
Dan Walsh
a2f964685a Rebuild with latest libsepol 2011-12-15 16:49:28 -05:00
Dan Walsh
32db106626 Add support for ignoredirs param in /etc/selinux/semanage.conf 2011-12-15 10:32:47 -05:00
Dan Walsh
a29afa3a34 Upgrade to upstream
* regenerate .pc on VERSION change
	* maintain mode even if umask is tighter
	* semanage.conf man page
	* create man5dir if not exist
2011-11-04 09:37:32 -04:00
Dan Walsh
86ba998b25 Fix handling of umask, so files get created with the correct label. 2011-10-20 15:03:03 -04:00
Dan Walsh
f7a6a5065b Add Guido Trentalancia semanage.conf man page 2011-09-19 08:17:18 -04:00
Dan Walsh
cfabb609a8 Add Guido Trentalancia semanage.conf man page 2011-09-19 07:59:28 -04:00
Dan Walsh
0b324a21d7 Add Guido Trentalancia semanage.conf man page 2011-09-19 07:29:40 -04:00
Dan Walsh
71a9b31459 Update to upstream
* Create a new preserve_tunables flag
	* tree: default make target to all not
	* fix semanage_store_access_check calling arguments
2011-09-19 06:57:07 -04:00
Dan Walsh
f79f8038c0 Add support for preserving tunables 2011-09-14 22:47:54 -04:00
Dan Walsh
b7399a1357 Add support for preserving tunables 2011-09-14 22:29:13 -04:00
Dan Walsh
e7fd74843d Update to upstream
* python wrapper makefile changes
2011-08-30 16:50:02 -04:00
Dan Walsh
43cf1c48fa Update to upstream
* python wrapper makefile changes
2011-08-30 16:34:31 -04:00
Dan Walsh
f6b3fbbaf6 Update to upstream
2.1.2 2011-08-17
	* print error debug info for buggy fc
	* introduce semanage_set_root and friends
	* throw exceptions in python rather than return
	* python3 support.
	* patch for MCS/MLS in user files
2011-08-22 10:55:59 -04:00