* Fri Sep 29 2006 Dan Walsh <dwalsh@redhat.com> 1.30.30-1

- Update to upstream * Merged newrole auditing of failures due to user actions from Michael Thompson.
2006-09-29 18:12:05 +00:00 · 2006-09-29 18:12:05 +00:00 · 12eda6fb9a
parent 46d5a37267
commit 12eda6fb9a
5 changed files with 1021 additions and 51 deletions
--- a/.cvsignore
+++ b/.cvsignore
@ -113,3 +113,4 @@ policycoreutils-1.30.26.tgz
 policycoreutils-1.30.27.tgz
 policycoreutils-1.30.28.tgz
 policycoreutils-1.30.29.tgz
+policycoreutils-1.30.30.tgz
--- a/policycoreutils-po.patch
+++ b/policycoreutils-po.patch
--- a/policycoreutils-rhat.patch
+++ b/policycoreutils-rhat.patch
@ -1,6 +1,6 @@
-diff --exclude-from=exclude --exclude='*.po' -N -u -r nsapolicycoreutils/audit2allow/avc.py policycoreutils-1.30.29/audit2allow/avc.py
+diff --exclude-from=exclude --exclude='*.po' -N -u -r nsapolicycoreutils/audit2allow/avc.py policycoreutils-1.30.30/audit2allow/avc.py
 --- nsapolicycoreutils/audit2allow/avc.py	2006-09-14 08:07:24.000000000 -0400
-+++ policycoreutils-1.30.29/audit2allow/avc.py	2006-09-26 11:25:03.000000000 -0400
+++ policycoreutils-1.30.30/audit2allow/avc.py	2006-09-29 12:58:24.000000000 -0400
@@ -357,6 +357,15 @@
                                 break
                             else:
@ -17,9 +17,9 @@ diff --exclude-from=exclude --exclude='*.po' -N -u -r nsapolicycoreutils/audit2a
                     if found:
                         self.translate(dict)
                         found = 0
-diff --exclude-from=exclude --exclude='*.po' -N -u -r nsapolicycoreutils/restorecon/restorecon.8 policycoreutils-1.30.29/restorecon/restorecon.8
+diff --exclude-from=exclude --exclude='*.po' -N -u -r nsapolicycoreutils/restorecon/restorecon.8 policycoreutils-1.30.30/restorecon/restorecon.8
 --- nsapolicycoreutils/restorecon/restorecon.8	2006-08-28 16:58:19.000000000 -0400
-+++ policycoreutils-1.30.29/restorecon/restorecon.8	2006-09-26 11:25:03.000000000 -0400
+++ policycoreutils-1.30.30/restorecon/restorecon.8	2006-09-29 12:58:24.000000000 -0400
@@ -23,6 +23,9 @@
 
 .SH "OPTIONS"
@ -30,9 +30,9 @@ diff --exclude-from=exclude --exclude='*.po' -N -u -r nsapolicycoreutils/restore
 .B \-f infilename
 infilename contains a list of files to be processed by application. Use \- for stdin.
 .TP 
-diff --exclude-from=exclude --exclude='*.po' -N -u -r nsapolicycoreutils/restorecon/restorecon.c policycoreutils-1.30.29/restorecon/restorecon.c
+diff --exclude-from=exclude --exclude='*.po' -N -u -r nsapolicycoreutils/restorecon/restorecon.c policycoreutils-1.30.30/restorecon/restorecon.c
 --- nsapolicycoreutils/restorecon/restorecon.c	2006-09-01 22:32:11.000000000 -0400
-+++ policycoreutils-1.30.29/restorecon/restorecon.c	2006-09-26 11:25:03.000000000 -0400
+++ policycoreutils-1.30.30/restorecon/restorecon.c	2006-09-29 12:58:24.000000000 -0400
@@ -11,9 +11,10 @@
  * restorecon [-Rnv] pathname...
  * 
@ -187,30 +187,24 @@ diff --exclude-from=exclude --exclude='*.po' -N -u -r nsapolicycoreutils/restore
 +
 	return errors;
 }
-diff --exclude-from=exclude --exclude='*.po' -N -u -r nsapolicycoreutils/restorecond/Makefile policycoreutils-1.30.29/restorecond/Makefile
+diff --exclude-from=exclude --exclude='*.po' -N -u -r nsapolicycoreutils/restorecond/Makefile policycoreutils-1.30.30/restorecond/Makefile
 --- nsapolicycoreutils/restorecond/Makefile	2006-08-28 16:58:19.000000000 -0400
-+++ policycoreutils-1.30.29/restorecond/Makefile	2006-09-26 11:25:03.000000000 -0400
-@@ -5,14 +5,14 @@
+++ policycoreutils-1.30.30/restorecond/Makefile	2006-09-29 13:01:57.000000000 -0400
+@@ -5,8 +5,9 @@
 INITDIR = $(DESTDIR)/etc/rc.d/init.d
 SELINUXDIR = $(DESTDIR)/etc/selinux
 
 -CFLAGS ?= -g -Werror -Wall -W
 -override CFLAGS += -I$(PREFIX)/include -D_FILE_OFFSET_BITS=64
+LDFLAGS ?= -pie
 +CFLAGS ?= -g -Werror -Wall -W 
 +override CFLAGS += -I$(PREFIX)/include -D_FILE_OFFSET_BITS=64 -fPIE
 LDLIBS += -lselinux -lsepol -L$(PREFIX)/lib
 
 all: restorecond
- 
- restorecond:  restorecond.o utmpwatcher.o stringslist.o
-	$(CC) $(LDFLAGS) -o $@ $^ $(LDLIBS)
-+	$(CC) -pie $(LDFLAGS) -o $@ $^ $(LDLIBS)
- 
- install: all
- 	[ -d $(MANDIR)/man8 ] || mkdir -p $(MANDIR)/man8
-diff --exclude-from=exclude --exclude='*.po' -N -u -r nsapolicycoreutils/scripts/fixfiles policycoreutils-1.30.29/scripts/fixfiles
+diff --exclude-from=exclude --exclude='*.po' -N -u -r nsapolicycoreutils/scripts/fixfiles policycoreutils-1.30.30/scripts/fixfiles
 --- nsapolicycoreutils/scripts/fixfiles	2006-09-01 22:32:11.000000000 -0400
-+++ policycoreutils-1.30.29/scripts/fixfiles	2006-09-26 11:25:17.000000000 -0400
+++ policycoreutils-1.30.30/scripts/fixfiles	2006-09-29 12:58:24.000000000 -0400
@@ -117,8 +117,8 @@
     exit $?
 fi
@ -239,9 +233,9 @@ diff --exclude-from=exclude --exclude='*.po' -N -u -r nsapolicycoreutils/scripts
     relabel) relabel;;
     *)
     usage
-diff --exclude-from=exclude --exclude='*.po' -N -u -r nsapolicycoreutils/scripts/fixfiles.8 policycoreutils-1.30.29/scripts/fixfiles.8
+diff --exclude-from=exclude --exclude='*.po' -N -u -r nsapolicycoreutils/scripts/fixfiles.8 policycoreutils-1.30.30/scripts/fixfiles.8
 --- nsapolicycoreutils/scripts/fixfiles.8	2006-08-28 16:58:19.000000000 -0400
-+++ policycoreutils-1.30.29/scripts/fixfiles.8	2006-09-26 11:25:03.000000000 -0400
+++ policycoreutils-1.30.30/scripts/fixfiles.8	2006-09-29 12:58:24.000000000 -0400
@@ -3,9 +3,9 @@
 fixfiles \- fix file security contexts.
 
@ -273,15 +267,15 @@ diff --exclude-from=exclude --exclude='*.po' -N -u -r nsapolicycoreutils/scripts
 .B [[dir/file] ... ] 
 List of files or directories trees that you wish to check file context on.
 
-diff --exclude-from=exclude --exclude='*.po' -N -u -r nsapolicycoreutils/semanage/seobject.py policycoreutils-1.30.29/semanage/seobject.py
+diff --exclude-from=exclude --exclude='*.po' -N -u -r nsapolicycoreutils/semanage/seobject.py policycoreutils-1.30.30/semanage/seobject.py
 --- nsapolicycoreutils/semanage/seobject.py	2006-09-14 08:07:24.000000000 -0400
-+++ policycoreutils-1.30.29/semanage/seobject.py	2006-09-26 11:25:03.000000000 -0400
+++ policycoreutils-1.30.30/semanage/seobject.py	2006-09-29 12:58:48.000000000 -0400
@@ -456,7 +456,8 @@
 				rc = semanage_user_set_mlslevel(self.sh, u, selevel)
 				if rc < 0:
 					raise ValueError(_("Could not set MLS level for %s") % name)
 -
-+                        if selinux.security_check_context("system_u:object_r:%s_home_t" % prefix) != 0:
+                        if selinux.security_check_context("system_u:object_r:%s_home_t:s0" % prefix) != 0:
 +                               raise ValueError(_("Invalid prefix %s") % prefix)
 			rc = semanage_user_set_prefix(self.sh, u, prefix)
 			if rc < 0:
--- a/policycoreutils.spec
+++ b/policycoreutils.spec
@ -1,11 +1,11 @@
 %define libauditver 1.1.4-3
-%define libsepolver 1.12.25-1
-%define libsemanagever 1.6.15-1
+%define libsepolver 1.12.27-1
+%define libsemanagever 1.6.17-1
 %define libselinuxver 1.30.27-1
 Summary: SELinux policy core utilities.
 Name: policycoreutils
-Version: 1.30.29
-Release: 6
+Version: 1.30.30
+Release: 1
 License: GPL
 Group: System Environment/Base
 Source: http://www.nsa.gov/selinux/archives/policycoreutils-%{version}.tgz
@ -122,6 +122,11 @@ fi
 [ -x /sbin/service ] && /sbin/service restorecond condrestart

 %changelog
+* Fri Sep 29 2006 Dan Walsh <dwalsh@redhat.com> 1.30.30-1
+- Update to upstream
+	* Merged newrole auditing of failures due to user actions from
+	  Michael Thompson.
+
 * Tue Sep 21 2006 Dan Walsh <dwalsh@redhat.com> 1.30.29-6
 - Pass -i qualifier to restorecon  for fixfiles -R
 - Update translations
--- a/2
+++ b/2
@ -1 +1 @@
-936fd28f6426898f23a30e70c6871a36  policycoreutils-1.30.29.tgz
+d21b5be848a6654e4af607b90753836d  policycoreutils-1.30.30.tgz